From 29ab922c1fc6fccc839129247de2862f9b4c6a0d Mon Sep 17 00:00:00 2001 From: shawngib Date: Fri, 13 Aug 2021 16:29:19 -0400 Subject: [PATCH 1/4] Add NIST policy assignment off by default --- src/docs/command-line-deployment.md | 1 + ...0210419_missionlz_as_of_Aug2021_Policy.png | Bin 0 -> 166716 bytes src/docs/policies.md | 59 ++++++++++++++++++ .../config/create_mlz_config_resources.sh | 8 ++- src/scripts/deploy.sh | 6 +- .../terraform/create_tfvars_from_config.sh | 4 +- src/terraform/mlz/main.tf | 50 +++++++++++++++ src/terraform/mlz/variables.tf | 6 ++ .../modules/policy-assignments/main.tf | 19 ++++++ .../nist-parameter-values/public.json.tmpl | 34 ++++++++++ .../usgovernment.json.tmpl | 34 ++++++++++ .../modules/policy-assignments/output.tf | 0 .../modules/policy-assignments/variables.tf | 20 ++++++ 13 files changed, 238 insertions(+), 3 deletions(-) create mode 100644 src/docs/images/20210419_missionlz_as_of_Aug2021_Policy.png create mode 100644 src/docs/policies.md create mode 100644 src/terraform/modules/policy-assignments/main.tf create mode 100644 src/terraform/modules/policy-assignments/nist-parameter-values/public.json.tmpl create mode 100644 src/terraform/modules/policy-assignments/nist-parameter-values/usgovernment.json.tmpl create mode 100644 src/terraform/modules/policy-assignments/output.tf create mode 100644 src/terraform/modules/policy-assignments/variables.tf diff --git a/src/docs/command-line-deployment.md b/src/docs/command-line-deployment.md index 4e4f9d7bf..0aa3d5f0e 100644 --- a/src/docs/command-line-deployment.md +++ b/src/docs/command-line-deployment.md @@ -101,6 +101,7 @@ deploy.sh: create all the configuration and deploy Terraform resources with mini --write-output -w [OPTIONAL] Tier 3 Deployment requires Terraform output, use this flag to write terraform output --no-bastion [OPTIONAL] when present, do not create a Bastion Host and Jumpbox VM --no-sentinel [OPTIONAL] when present, do not create an Azure Sentinel solution + --policy [OPTIONAL] when present, create Policy Assignments for built-in NIST initiative --no-service-principal [OPTIONAL] when present, do not create an Azure Service Principal, instead use the credentials in the environment variables '$ARM_CLIENT_ID' and '$ARM_CLIENT_SECRET' --help -h Print this message ``` diff --git a/src/docs/images/20210419_missionlz_as_of_Aug2021_Policy.png b/src/docs/images/20210419_missionlz_as_of_Aug2021_Policy.png new file mode 100644 index 0000000000000000000000000000000000000000..cb1a816a251c466e3ffec84d2b04446e4decb9be GIT binary patch literal 166716 zcmeFZWmuH$_caV6pduh3EubPT-ICIh(m8~5j&zrFOE*Y&Hw+*GBHaxG4&4kjG|z?i z?e8DY`|&;APwyOu2Xny;T<3Z2z4lsb?=j?~yd>rmk|#(=NSGg_#FUVbP-&5nP_7?6 z0KU@~-m?IFLAFuV9tjE8;r<^o)P%wX z3F$8HgV=i&7v0_T#~%2Tvv;oZ-X+#c^=jI6o;zc0j?+`cWo`BJ<*Js(syH8o7m78C z8oy-+t15nckNTk6-!rH((ErUFe}5|fH~wFriJW;ZA^fj1c{diCOxK56lixTer(U;Z z9*^>xX4tPc^)C!0CiAivVgNVu&x2eP=iuGn3nUk$VD7&c%kN)8|33FY_jN(}dqMsX zhWYoo%d`Lg4gYWLQr8M>@jjCNJTx*cFWr7u?f+bX$@%?f>j?_7vfjItwq$j@`p;iQ zd-n|d_g&xpgdxa(FR&lL(f&T?f7C_#_xa(=|1aJU^_jN7X>%+NosgbtJO=kWt2tT5~sw!e}U-bO^UnOswC~ zp}re->oZvje-c@WXW(4@%jF4usMLu-Qk%)jbOx*gxhepHlT-kKT>pxu3<(LjX-P>* z=_^4+MMWu2NlyNtdU@beJeK;s#~ZrmX=FA0h&sD z!eci);7i+at*qWTvTEKEw{Bi$BeLo#)-!O_=Zl~qbh$_vRZd|{^`a-_qjeUW?cRr5 z`u+3mqy;EqdAdHs?x`RmVzauKq-VLIp`e9vB32(kK%<2DP0nGv%q;a z;*)C*Q&KSmgq3d$ok8fk?Zp+$xvcdBxw5pXTTsRuSMicRfu?+1CX%K2YQW<8ZT|^* z4a|Q|it2S;63K>`kzf@p_fkRVJMl@wUR4iyOH7s7X!h=|RUHWt(I#}8%z42ezuA18 zx~bXo$|+OD&(CjBLry`V{q}NaPz9Spa5vUMMC1!;2?viJwT^mGj#eIyhicw%e}w8K z)2Lm8>Sf@0uG>K?qPam@h^%(O+VR)dS9bAU6dp=s0&cbLB@|xguNa-R(>csz6pAZa z&r;k=INFl8-49x6)Xkq|stDbjC?nLic8v0+^>8y)2Co_S72~}G22|id^B`5W&$b@x zt}mhFuU^(4GTTQ&Z;cnm8Dc_-W-kIn3CMB?be(>h9-SFqDU?L)V`9xDmUGE#We$+i zop)ToE!-WXvA_rJpOqvsNIVeJl9S5{e#(=}bgA-(5>aT%;Uu!EP(j0<51dH}t~uIY z%*QQQ^14Xrfa@592#e=43l>jdNc5LUi6{BkaSe$3D6*jRym2|?tvH~0oH(3-B57f1 zDRjA+lP8lnhCE(tKJIh?B_k$ovRjjGD%PG)q$i^|$!>N&&}~o=I$uU%pL9K5cP)Hp zI`o2FRqIUbbR|lNOF5m>GNGloc4VABV!52Ym5E)|Esux@mRy0Z2TEc zgNk|Po;a|x3#xf~jO>#QP`7?O)psY{%Af|D^q}HYZZMZ}o^gZ9R(osV*h`zDu`o8} zyoO(*s+SsrDqAwJ5PHwNK^1d!TlILSd0mw)njeg+m%YGiD1@<9wk6bqrn*d6J|OE0e;@WzSc+wILecL^VAL)*y3-x-wUVjKMDGP5o0M5RoF-yxp{dZOYVPO zxlAb$PE_S_VfWu+1nSz8Z9VRT%pz=N-5s~S_?f3StSwN;=@8rObqXyaqVVwbsj7E#TSX^Z_s!)6^|DpWT8d32GlI#k)19Vwc)W1alO|lpD?;@kis{QS1oo5pw4UY2ssdQF-e@Gyjs(GNkIkV zXsbdDwGmG}Gtu5{`cKUl_;*=~vLOxIpn)G(5dpR>4jf>&crkARu-lsa9csXxOxQI{ z)U@S%gW%3+_IA9&O1{Fzg0KadC3_g*vJ)qpGjJmXneCs*%Qe~(C9NyyN=R!n^eAIg zP}{K`Yu(A~$*2nd1w~qFZMfe6?7th(aU3HB+3?SQOld1j3Dr@%3X7({{P3mBTcD4D zyb?C3>)}0aC3?tHWn&AhNUKiCqBVx5Kcu09!9WgidW71HOhfh{uHWa!A1 zsKt<;JuL}oI1+KVILy~={~<_O&{f?S1$FgPiE9{3yc2wxvuX~r4{!o%JWkp4 zBi8;RWiuXk(u)34JKy69=h$iBwZp!Y?j>;(_b zOdm5bajk!)i!za`mB(Yk%z0hEzS@o3r-dU{$>aKBu^yje1zr`WAfDOOL1In)DfVgI z^7L~NwCN8aihTJiv}a{z>gEmQi^0|^onaLGKLMDh;NZ0|aVeic_rbYe zJyY&9n>HxNNUIL_HqTaYkHBHiNS(KAzi9*Hg2c6KK*~14tw-)Fig}ma|TzQy^7H2P> z!W=34F#BZ2MJ;P9`aTSP(3{@cLaWIM&;Ov*AsFK%>!;7lXpVw)Q%kymDgBkvHL7#t zdDlvpjv4-!gR62+u{`%kYnfSg)6=kq ztDNzCPlT-fzEm4r9b$Ptl#ZzQj9bBBX;+1C*66MROLyEabz_UQ)^Bz+z;>6?yoY0^ zHZ6f8QdDS&LxTf@T2BAM|A71w5-AR zFCCqUJ_rSyAm!|Bzayf0C86m4uFLGF>QpiQ;5u>hix*1O+`me~wbx|h#DgXc zKiZ(Lw2Lym@GhHI8uvHOm{&F}y=e>7cG12E@6)K;JJ6L0_nPD>Gfb1@Zx!leJ8Kvx zNidU=P3<(~Kb#>+GlB)%guRuru!nzoY+R;+S(c zN2@WgbkLy#M@E#$En;bJv9JIuWBL3|s1>M}&w+Yr2fsq^6^1^R#*u*e~HfQQq^|_8Isy`6la`k;(GLOE@j9Ro(4Z>k2vMirW2h*Oo zqI@)W>wIkH+BoGTZTjie(I9bdkK*Nwx`n~YhpI8DIaV_6#T%OJZ)FUedFq>1+F=lU zErtS^ytE}rw;)p5_~5DqT79nhSa2GbMiK8cOBpim+2&@;1<8KDCG54rdVf)~=mcjKA zv8N2*1Fs1A#N?s>)OKP1;G9|wI4*n7v(}G+(>&lk#02wn;;f+^=?mhs)Uc{t z_tY+jKp-O?9Wt@2u!t9pgMbwZ-7nIwKS$bC5?XFp%|AtOeD!?chuMtDFJG$N*WbV7 zedn1NTSB+JN~>J_p97~*w__eeBf8Z0&FUlO=u74?%5z2apIdqr!$Oocl56@L2J6P1 ztCL8rGia2bFPzBm((;l^IlWY8V6m#_mM)1Ob;#OAt4*f;wL)^TT8WRvd`~xsH2#68 zvap?=5ZC8rLKe1lp9umIho=9{YE4fC2X|yk*my{ ze|&QxQQqoEpX4;BS$(&pw$Q0Lr^Mj*O2vID`mys;3sR-b%!O#G{K)JdDRr%X&PPgL zU;q7kUmmez{%2r?-|TSeGP`ZnzNVqu-Mn&LccC7L%Xs2<(SuRP%oijay!5oQ?y;hm zlqOxN%S=5lMaLe+N%TI-H+WdrG{qu9l900Zn_spi0r66!hQIVh0h$E~=Z6_?%8~X5 zQ}JM38#R4q`K4da(yc0VQI=BDqOU(a&P$}Gs-hyTca)&RNvV2XSaXYNUf-?W_t=~( z>l4KUG;HO~z$-jCNjaKG7g`7_8Z$m{-<$0VE-MlL=F@-YpZwvlRHyJV>8=w#M$Y3o z^atzR^Y;HT(&kK^K_to6?VwH7@dp|#RKV{+Y7ApwZA$r|aZ8Xl-#dx4=`9SA8w2tp zvJx-xMhA)U9E^bi%jCP?D&PJ>#hj^f5JTiJKX%tV?d&NCLt66GV@v+=MY!#$fQ)?Hztr65 zm6r6AF*%@w^B}l^&Lb|A9j<0?08T0zcza@kg=DhJb0I9OWJ|WtLh8o<51B{$%>57N z--$_3r+4Ujl&(#`VQ8%y?A!nw6dlM#gP&1vK-#=VRto_m;}ZpvL{hTOKVF#&$-lcm zT*nsw)JV=MkOde0MYr~;=zMjKxrLF6`Lmf$7m6$TszB%bcz>cUu6KHQXCqIIgPg0m zXFH#MWs7}~ZWBxyMb;QVKA7M^TFh^~N-$V=D2X5`MgPOdcGZV$ksN{Ii%A%h$N-W!Y4Nn<*W> zfI|O|+C%<#xvW%B-0Jn&7b5}Y7U~~%%mPf_8e@uw-i1g6T0h#OA5^QIA1z}G@q9=~ zI@bCkNWJ5$UmViL;u^rgmA;P6Pad|q=Y1ddPK8si{dXMX*Z8*AVJe4jwJ{Eua)kNPjq%|nmEqs(oV!`Uk?e7Tct zRi<^KM7NE`W=;xfk>;-ELM0vIR^TBUz6gBrbG-dYpe>WXsI#lG1+%+zj|(yeYuXHE z5+xla^Sd08U8L`i8+-n^fZw0|i_0AhX=MTCI!=zx#WwAL}&Tf zSIcJ9={P?~$0P6h%_dAR)w3F{;=~!_C8o%P%+ViN;uBfRes?P*;}9)rUENP{5o{t6 z4M~O_$|H~KAbPXj$L4&A=?5xp_4G%}L4dOUb8e+b|DKxzUsFoZXX^r+ zKrWNz#oKW8r8cieUGr~}{z=pC8<2BYn0CDtPLJsylLE*Zm$amy!+c)q@|3Z52b6*3}~P{vcIEh|l-Hk&8m`SkX+)-o4-+9RJt$ zGxq&oK!^H|wf^_~3G$j+*|&4YlL2V10B{WTUl`N)H@*JIL;!->ozgsBzAXA9&;GNN zzh|taTQq`$gogG%kqP+ePNmJTB6|Qjc;5Zv^nR(;Q{EpfyHCR=%h=xjzRGst-^5^W z5+9z$HC)3b@x>-V@)o}lAaoqj`zy8qYd6;S?Yy@Z(PJbOB*B80Uz11Ogs-u3^RR$ z{SX0dU}iHK_EJRtE;NhlmgMz)Nh?!fZEI~ZaxHH%uXfu{ZdS&bDo{c!%;r0G$3M=> zbDNjY%*hu>6c6BBC|&bUJep5yhrB?~q22Z{Ipe-&5h&^jmYr7mnpTZRJ)N4-g7+)9 z7r3uTlOh8P)7J|{$Z#sq z>{z=$!8WYh`q52lgD&sQSS+X_oLLL^>&q0RO0Irq8c21%Siv}C0BcSy_PV9KHZwHl za(wd!PfsVl1Y;!tLPqob2IF5yZ92d4djmaqnD>YhSzq7hA9(T@3YSYZd{82rkm2O2 zhznk%Hx=J|;D+2aZvkPyIAN#U?!hj}ziYdx*gdtx4#7v#h+@nNN(U*(Q@wM`1~pm3 z79EcuDP0Wt*5Q+=$49$;p|11FEUrQA0QUWHr{4Fjbtb-{GG2X52K-s1KVW5o`VxBc z*c9eDDrxQ;B=beNuT}47>EIMqXTJ~bK~)q%q-X7BGERg7Hsg)MWzk~GXOd?cVI#qt zcUD6a=IqR1tMY}|k5gZ_^cPi{!pfWoTp1(}9%^&!*UY+9D3vzl(D=E=tUqGr{h&^gqT2d1!_ zfxs8GjmwU(8V1MSL$<@NROya!QRz&w*`wjAZe%^Or3QsAq-E{;J%LRZW<>jxy2P7A zRh1gP_0ZcQbsPFnM-2G>J6ql9-u~v47;P=>@#A8GJ%;fJiM0}In(i|n)qmrVFqoUj z?0*BFwl6kUx~rXLUM~<6ZJeq=p7FO=H%hxw?`{|3lodpzJx6-Q)aY@z~p@mmDaBdB#a@iiudGBuM_l?_p|TFH|3_@S;iB2IE_ zC6+fH24?SpKRFI%?xv5gVFb|;GE5D2^KF@eX!iEyIJoKtpvp|(O#ow9=bJeH3m9C| zh=@Mw@Gu6podHdsPuxfn0PZmy-u`5dVlLy*bV=0IR(9MQ>g&S)k?lVECtd_T87J`Q z9KNeE{T$W64qwmHUl<8Bm8^$cTHT&~yS=lr*T+dXkpF6Y9)B927q6Ad0;y;*iO^t( zy>&NP+@PD1qk@})=tvMYV6YyZHZ^#E@bsc_ec{VLc+B{ui}b1R|E>%3PaqBO0Ye!E zSpul>)Ku*K1`)ToAR2)U8tO{zV<)wPLemd!?6w9tK-3UnNL}7$QxBgS6CW;l{gS)$#^9rkkLK$^sSutzTWDbd(H$WV82+0k$pF zVl>m5w+O&FAe_En!0WYqT`Xlr{eRc(s8P(dGF&z(2G|S9*j~kNFsS)Qk+mEQa*K+Q zJyrSAiG6La+Nu#Ue6HX0=d8!?cgQ(a!oSkDGOJHQ)Uelw;EitG2t)D6E z!S$!`eg^I!asqQ?jK6n!ABAQEGqy**KDn@W*iFttIN%4dB^PPV+(u8eb!>nQJ#L`c zo=cCn?GJMy{2%Cjq65jvBu}|J`KnZ`@#Z1S;j!hi8{M z(ZrQV|7w~q?DwsXp`9zBYneh^eh~!SS1jKpm|;3h;7npfA8rNto0UIkaIVv?q1Fwl zL!G^vZK?YCbaC10;fEh&^{~p23}C^f-xEgsfZ~21$cDeNl2a8@==5yx)p2c>0OPVx zQ?mt~M%WDykQOIekRo`|t8P3=E;%AauB)7huL1%YsBWX#m7_VLADRxDXp9b*$yD~+ zg>Yd4-;*KvALF5WlKov2hVpwRttLB9G`R`Ev(4%0z}h@lugg0L9n#NJXCCHcH{Uj? zzDB3-cc#GWMb`U^f#j_{d~|el)YK9x3(~;D!J)SBJaWA00t5Sv_cOcQpfLgd%Srs{4)7Q`y zbkDlW^@iqpF&GtQiD{;gLpC=zsbmrcQn{mUEd#unUb#_0*^1$P+mw{ig?YB7hPGQ2ym;DdI+-&kd&QTdmgx(>%@fauh zWdx^U4ITkazs1)>UD$W(!?pfs zyFmmPQ_Co{gzM7F8=w4Jw%|YeO*7m}9d~n3-$gsoE(UWmh_6Cd0^_}pye{|C(V|{l zUG7vyQ;P1ld*2Blc8U32T85g7gdyl`OZ&2~yYocKuP*aLhvfHGK?t z80*x6S1uP_(Sr(@bWTM}fP*HDT;}Fv)Q^!9wm!^Dj?DfyWtDzA63E-V0ADRG7CZJ_LrSP6 ztis-}E8Gq%XIHboReSTq1O2aNr%J@ui;0Vi?g_}9UR_CAE!fA<%iz}8!^QvyDw_fL`^~o>mz1s(#!l_)=xNeJNK)6wg6AHBcO5?R35+hEqFQe=4Qw#U&E@A7y z_CD`C-I)%{^jOA#YPer^_$bBZ6@W4{UcYT71bCs3i}qJ*ZNvQbWL7VYQ-2&stk-1( zv9Ljz4uGc(3qWs&jMfC6K6>Q7?0a~%KhN!QD4%Y=6WSh(SRYK)bKA<3Br@!YygBM; z?tU_&{R1H$p{?7CkC;_e-P_ySt*94+x9?TU1uPAD9zn_*DV(i^3M^C09)2(`DYN>$ zrjz&Z=G)G9g>Lb69Y}9;(Tj6e^_DZ_We{jSDxnB=GkAvgT78-CuRjqLg~vck`v@DG zaNp9ORKeN4y1IJPSucDasVo}_XPa1Jm%lvLx=E+)#ApA}&(^i9+RH@w>9@Vb&t^3O z*-eM6=IiBX>k>dMPTf5{;F-$z6LlZ?wwj5$8D4zoUyS?s)(NSG<-&MD(77CBhTk*E z9r|%=46Gfu7?G}7Rci$iH~-v}_@z@V&HBgl#vXu1wQ=3}qEg-GDt|ps`#sMF_A_C! zKT6(})f@K9#Lgr~c}V~locFc2orO9`;&yXo1f87co4r+MHr@gEl1J>o83hwD>!&Ut zd&JNyDjl}QGViW8VAz-|Q1=7;9bvF$+f`C=BL-z{Y_dH)!HiMrMZFtegPUXne`<;i ziM^k83z@t#Me7GEsqD&9wZZKO$MZFWz>?RMwTVgoxy!wKs(hjd`OvUg^0HJN!(2l* zW7d8v09D-8w5ys}YV|3zrCz;N^1P~E5V%{LaX4=}<1H-#??qf`Y3bLmUr{j#9>pfi z)SAb>on&Hqztrq#>E_lPe9V$48$|{*DnTMe_l?SDUg%AchJ!-Tfaau3PGMaeT!}azZyzRzmz8%tR zv^Q6m?Waz}?@~E)`0c&Xve0=4c82>tZxz-_0yejCacF9cGTkj&f135yyBqfwtCBvl z3rh9G#N%vTqam4@sM9IWxijLG9E=>z2Y#^8qbDZh?=#~t$O^a7a5Y&>_Qf+0GU-V5y14B# zafc#q3Q{uqZL;pR=j0Mbw;W&7P$+)<_zVZ5Jj0FJ}eJ@ zM$d)HBU1^Eui$yHIdqukG|2gJhvSfQ+i|+%&Qu6i20+cO$7Gn-Qg1he?wag3hA>IF zM!dT%Mzk|D70WNJ4VA;rNlSBn`+T*&c<#K3-BM%op{eNYov!+(!t|FvD8zC6$G0`kIN}i{n2VZ=Uc`Dv;-u?4yZc0kO+rzh@ zW|cR;g1BGa0C4r`gjt)XWEhnnC^6CpJ zhKPuWoxQ-hjze(6hq1A-t^FN<*4I2y{cu`>8gby)7u7+c6kd#$2ovE z^P^mAowmSYI?D`v-zGlph3y7!Jo6VN@t@x%|B5Q^uWkJDvIO8y)8(K~0gvr!o=_65 z9i*pjXvqIO(+@pb>4^#(WWN@Hv@@CKAll1UcJuqr&I7Tu-qYx&#FLAG@2c@fK%K&ILenxb)gJ`HGr4OLlKF3ULRV`UXZAXiAn4)G}*&p z-6w=;Xjx^!YG{rH`d`!$d-FZ9Sto_j#Sj60eh(ncmpqOmgzP z#PNxVuv@zw8=R=%;AKn0Y7Co*0f>2KD?edkr}}A1Iy`x4ci7ryT95|M3}|tvEyt^x zdtWq<08t9n&MXC@lw7k=_I9G>pD2wK=(sYyp*c;C#%B)S)@rz{tmsO;6}uh2yT;~* z60@5eN?bBr?A8n`T{*X3fh_JS?k+3t(O!Wc?r$-XBN6fL?)sRy?Hm?C%I$UjJE;9? z@t`o^Iik9sDd$X*!ZU6H(MyvFS^k2dR;uy-wdbU&`ptQd&@BK5o!lom6gQifI~8{) z;|k`qB*)D=$S(@Aw8ojNDvF(w2}29kVyd?d+TR{@X_*hsTCdpP&ZxW#0UWLqjV zziY+>9pt`O*X)gR=sdO0`_3f!Q~hegd{i_4${^jv1k-#m*iznsbTEJ2Y_aEdxXux8 z(lKJ8xd>86ez(1C_)lFYSnCk)eFN=3%Ul;3!?=76z2Y`5%}B7)nDU;V~Q$gYH?Pq(o$`? zCy-~#^;Z1nL#tovO0W)Q4PU{j?bjLKN%^=UF&+}IS+{-eA#?T*3c6cH7y4$*wh_kE z9NgdyY@5-#hbDRm2ibmXIiEWk4KW|t`OUU^JFX+6x{fWX5cXXcp28skXEG@m5*@f^ zpIcI2(fK)N_4pd~44YtIibM`JxNxPf)pU-sn*vkVYugiP0%;&dQ=3zcyUd2n&8^p_ zxlobwfo8;q@Z2l2Dy zgaz)>sfolNJX=v9VA$e{q`fQBV$P4%pu{G09Sa*& zU9DuNorU|&a&=y`1+~;1Ek7_A4Fv7$YVb2wxqfh+zWy<^ftWgyxCa|q2w#u&KxJJFfyUinB2L|Xv35-47k@}2PL@GSPcRo&5x3YkI%Hht(+DUg$LeuR}dleT}GH*``vWL$1o!e!OAhs(%f!D^Toz0qNdalK*le_P-ve}cf82x%i zve&ecK?;Pm_Z`Cf_-7D>m&-zbB$W8@LCzK&@_oXYSAGV+rB|o4pwwvIDdLGfu zQRD(C>Z<#YV|h2wJHvvA+sob72PmzaO|>P-6^9zpGO(^#%_HK+v62SEc|i;QfT;MBXmM& zu$LQf7!lKdoE`LahEKwfn*GKFulZ?IW{C+VdS02SvV`H`TI{8d<$!|L@4xlqPB%LY z1Nsn8X2Ecp@iI1a()*8`nMUU*m9Tn*ME|NpUaJvtuv^VK9h@% zzPoC_>nAM=GYbt@vA$kU1?O)ku^PI>Hy-}LD3DFYB_WXxA^?tv6@0xyad+NG zRdEHF81EpZI|2YpqsfknQ$Cd|f?L&R)q5JU|3!$45o)LgE}1&v!r-JsG1yX5EzA_Dth!~+3T z*rL#*IoxAtT~t6>UF%y)fd%8wnGzn4r}q;zX>t6fe%{z?(ouMz&aC_JU(T zX@`TkfI)ER`TWvtLUD1>(&tW04=v75!x;j_F3fsuY23J-LD(A+KnB$UXOx@62bF>? zX69>LvC$e&j7i(n)6ELtfM0JIqpUeWAUbvXqIdJE-XbTQ=nXb~hskSsuML+eH)pgx z=yj2Sv1!<00gSP-TCVWp_ndXvd#-Y3~ZT+N3QQm>D zKEso#M7&|jLo<1e3cj9OP!Oip5TmXFX)Zil%qF0(6;_4HhYB#Vs@LrYVHpKvZ0%q| zJ>=ilMB()(x%1swDg^H|C7+;$Ikns>)nHPMe9Q4?(%_g4ioYbPuaT%ScGX-g&RsjR z=3W2&{JwRltKoGNrMH?4^a)H;SMII()}=@AjApKoVrOQ$4BKpR)451vbIpx}*x9S> zv*Wh!z}$|vX%A3+1V22+2+LkulZm|DNxlX;2|bu)pCLyJ{w@cQgEmhDl$76*{>Ig@ zc;SU4-0K?N<9eEAKXg%rDac67YVhM>sA9MFl)93GDg@w=3|hn|L0$lB0zT9LZ8>P; zv!3HnawA{Yf_%uBluT#TtoG-|EpE75=Wfp`riY3KVXYxQ#4HR&z`Dc4Esa*cz7lnz zJjIoZ=|!-^bsH%|Y7<%-X5Asi)p}0F3)><4P%UQ}ONIs;dgc{!@P91I1z``i64&?d zI{@SQ<8E)e&=(3-e(m5lnCk-M}H=)a_P*O?tydM==>S>RI?T|5lYb)hcP zj%lro;_ZDNnp<};xs;nvidQ4qOm(vK7RrmMQUi={miAlh?A@rLPpW5eWsO|@s()E? z8SWp)JR;q!3a`;`VP<&1n1DII7QNSh)upjzwl{sB1oO7qBGAuh&C zh%;Ag3Oo(-JZN=4034o+4bgOf<98}TCY$=65(~I-bQk_fDX#D@Z=o`YO!#Hd(Ev)F z?}5Gh=N*#>!I~MW@Tqk8?bXuV5XvJ>$On3{k~dJm?7)}1QHM-F>=CG{jd{|$$HiWg z!WVP#_ShPIO-;c;IpiiYLyKDxH2teAb5wx>H`H!t2&UCVC%O(@o#Pb*NxG<9V<$aRG3r>W0v zAup`hYPAS?%Uq0CvN(t*gU9T~%vJSG7jm^osm=6C-LZtnBImaj+0YkILw`hIbg}DB zb7~&&38WjuQbCmN^{Ss&Uwy7awOP7)>RU^@Vo_{z92DREnQEc4e7sXH#h1{)-5G+b zlaXsvi3uV0Y=dnE-c)Yd2GB0lb-A;F{a0;Kt2Vq1Xj~wcC^+qmenDIXK1vdrLc9?z zOPCab9!Xt7w{Yy+(gX4k#Bzt9>k98in&^D<$(YQA$BMrzJON!rK-2jrDXh#;`Bzp? z@~o03?&P991k;>hFZ3$j*Uo-N@OxQ@qaz2_=!kxOdYCn40|y-g#=(WriZM z$GG6E4vyX24x3Xc%nXclP}>VCh5V^&)}o=R>rXCd0oCOOAFNnHIyUFI2q5 zPLNq?KLeetrQfhYavC+UeE}PdS(<~)C$l*VPE}6E3zp2Q@-JpNY&6zpBr#t6LH%gE zyFIXbzQPhI?$}`6+B@L80Owy-^|G6Pb_|mv?>CjZy4MZBq&mE)U+`iT?;a*ZMMWoj zVtP#>ro$P7q!o>@C&e)$$Mjv=J^P0!QOrfTB3^v<&J{y0c#pj~)NJTSg%0{|qaN+N zqN!$RbX0b$sm~1!_lJFpjkng#9>-X20-7bCoos z^7IQkPZ4*|&lABB_;!hmAwT!6>ELZvTfRcn+(~rJy_11?+*=Q16Y!_-4jLgaAsV%% zq~+oPL2HGpL6};)qjIwD#9K9YBt%#PwOHBayEztoS=G*+N!ONzLZ+S9j*Yq{==Z%f z?}xddQ_cF`u^gs`a=LW8;w!%9!MHr*^cuXbDPO=`x{Z7T4KSJpC`&p|_1Xo^y|+7r zLNFlbW-H6eDNm%!Z4LoJfc(FPx+B_-q&I&?w6aP_!t*Iib*ai0Tiv;_DL09%CW}=) zW`Wtu^Luhrw8pn|5$U#q09blQr%o6Gu=~r~Z{48hn>kTOLc|>%9ouv#eEW@lS`#5l zFQJj)AhrBv=RZcv0%hcl;yIVPjm={2g38$)WJd}+gMzx|NSIDxw~8trnXhY6_PhGm z#bE58_aAr)a3-gzKh*CPwd`9x+H9`Yfp^gw<_E=ZH;2!a^2!y%qF^^#kuC|UQjUCj z8p_c8Fjmb{YAA1jc+{J?yI1Ae^SCjL<-AKDHFAJhn zxfMS*Gi#-53u~75+cV9J57pqZN(}s(kf$3-n`+lQhJ0TKZ`)q(IcJ(AzZKZF>(6JK z>(?DD#-!bj^+Hc8a$$LQ+~#>$3v^_z__Y3Xs4M$`dZ+9D%6YGkC-gDqtdPCiCEy$n zM<}iHU2o=m4Wba_GLhYcb+v13^2lLR6~GpJRi@I83Z@} zMuSSF$U)u5<+zKmVNQ%t|I1}o*mV2tDWDA8%i(F*g6BS;CN^9|A!M%LPGUA~`rO74 zQ~Iu@WpbQ5N%49_`cfUt9fY$nAD=2cG2HUnd(^S8XMb^a_Tt3OV3CqgJy1+6%)vM6 zo99Eo*#gGFKoCmk-JGJs^q2@})_ZJHG%K)_YcnRrdZgP823oQXDO1i@wG^0l+~^Hd z9!#&*8TC>lG^{TD#deE$#63m{&xqIZ=3^Rt5KvDiw$Okf@VU4S?fq7SE>vX12SEQQ*Q*}^ z829XC>Gq5pdOl+q6_Wq!*RarC8n>>??|>UwNa8*}*C*Ry8YG- zM^vv0h7rz6TiY{uGuTwYH zHl<<2>Q6ZBRLhxehs1e5r4v|&AYxFw`E|h>66rQN8e`JNnnjI6ye)aL#gaStk7>A6 zYvDfA)v1o2py!J>V;SEhVK*8&qo-FGatV}Uk|`Q0^;wmHPZ)#qv$IFoFScvCT!=k? zom=XY3l``rm~bMns)hP_ED>*k`u^nFT6f!+!ZZa)qN5&65s2%Bq)E?l@8G*SC$)rx z+B=%2k5GnJP!oL^XahK^-^#DeUjnlzMf{w(fHA%v5`{l}^H$s;INT2IU~~M{G=_hv zBT2}+%`77P8n8LhvB^DVjT588ZUIN3dAqoT+-)=KzJn0iWwy6d(JpTpVm_V^cX`dj za~>^8-ULX913(-Dc5txT&wfA>+*AI*>^m$9!L;3*qJj*-AZnQ?05sXX8s>VxNiHtI z96NDycYAQh)U+A{m>Qda=aZ*WppeO=CMnSdbdC9w>6G(>skvTS2b0hx-y6_VzogtA z^J|bBTpX>%ad8U5yYQ}=PP|0V+X|z@`h#NKnaf{}T7wA*Mb3O0Q{$8uau@oOTuS-| z%lN*;chQJd^49;1kJQoO{bY+ub+$HT6wPo*_LnWy^-lhXJ+8Qfh3f>C{UX>&J9Kp^ zFYgZ*_=)hp3Uet@k9Y1b%9jV}5q2xV(v>wFR@xRUDF+h1PuOHUlSpBtSULv0Q^cK$ z7%*rKc>f+lH%n>Pr;?_!3FM9!otH|Qz#(1rCOFGGvv*!37W5rJE0(B$Bk}>DuDm-n z{)??>KTV{StK+AR(7e9*4PBpHXT<(uR#sLv6#e{T_87yD&d%Pwt7IZ~UpmX0K+lp! z?hqRh=5j6}yI8wWKK~FzM&?#L-!&oVaZd9)_s<9y8Oxm{VezIQPi@wd`J+Ae_#GY} z@PGBxp{{8&3yVD!=ew(Und$j(dt378?T{ENYPSZfX++$pIi zHBmciTEIC!TH2t*&f3)q#8;s-t4n9XRJ z+vXK_U6VJ-ZbND8Olbt7dRIO(BDWdZX#MH%pTPLkMq7ol*JIqw zMSG;^*qWYQo^uH=tNlR$VQ>TSef@n5Cs>>9(b6MI$HT#)a(l2G<2sKU^p>8cn`+e4 z6{KleU>7%og0+;J2BTi1hGX3(OEh(Q+j8yxC_f{?F^?R{Wh-BZn+#)!pMByp{Hg_q zB1+xI#r+{T6alD`wv6`A{lD3l(Drhqs*S6D@X92-O>S_xh%{^hJW#z#{r75W2^v}5 z{V)LtDLk@`wQ5S7IE9*=;-;$ztqu;2dq=$jqFCcDiJ_6Q} z3+0aYUUiC;w^E9Cm)Gs7EL2*wp}pUW=Ws#Y9YR!?b+9X(T&Q$Aub`&0^A+^_bAzkw z3>~em#niqwJOPjLnXG@Z;0?6Jo0_3P=}gz9e&VF7c-H|D+aJe4n<+^c&kQAIu6`&8 z%-{a$!;tI5$--K#?#!9qw0_TZDagwkodeLhs9(FmX00R*hk`=EV03h}R+g!Zi4W!o zm!AOao9A%(LR&=w0tWS~-4gThx(X)Mxu~gzow*i9h9M0ZNRL?Vjm@!b?3$Q7H=*FY zvBB5XPDy`kq^n1xu>;JYpuGlqdY`A&>4Y+E=Zv-#6D_9`HjU=1_~WMD(d8M#vWm4S zs~uai%7r0=--4Z$BJ|>lfkf_apPS7?O&leZpnwZ8I^{itNCq|_&{)!^3FGDkOd{OP+u?x`H(PgeRb$2R9>J%_d zp*sDf!D5pB^sO@>SaH!959`>V1P6N}5N2$C7df+a&fl{tUJYC4cLSJ;UGBCg6tEJV z=U(X-D@Aq9XYNtcwGQ+OXSbH0>TKe7s$t>qmBB@+s4n;3D)ze;YN#wRu~qxT>zcwh z-wJO5j!GXEwp~Q8_8cFm;U(ltLL{+u%r&X=KL-DfqVA`;!>+N%ptrTS5TSLG+S83p9 zR-HbmTkWi1bw)h;COR&)m6vtDlg{v9hQzMxt#5<7N=5T?q4kfIfEt+!7I7R z7KUH~|MN?fNWvAuXRMulh3Y^cL6PZ}$hl`WDK-9hzGXjVaS-MrfE4o=pT)e(mgLo`8(^ zrB+y|R7Q|Lc&#KukR)2$jIelEz6*ZVaaF%BSG9yr9-DC{d`{42acLW&;r8w7+QhLV!*hM_x#p=;pm@%4Rw-}%ltf1Y!lxi0_E zah_-IwfA0o#l7xzxQci$s7Z@(d>dK1Qw=>VlKU||^WEJa!hWeg4Kda6UvV$nG``1m zPpum&#doo$!{oW~PS~`dF;>Y$<%Kk#7S9#B$Tb&C$s+`ZG{P3jFX#)!vnBx&6MNKN zMuDStO--U-E{vCzjJC{2rT{+o8IwiQ!_eL8Xpf7HgWXMV*xcbv z>ra+GFb^x}WZkE^!Khug{6!l76%IQs+e<*Z04f9CJ#cv0Og2+f{}C3Ud$C_nSlF&^ zrcGuwROlM(vU3+2*7=+jP9%K4eIme{Iw)FeQ^2Ta45(cTmwpsc^!d51wo*s(Tzkia zz@hq2u(wKbD*`6tA31HZweJiZa5d7TX3Z%qkdoF`L(n7oD5s}H1p)lu3SGZVrl<1m z&*-uKakRHS^)Q)zYz@%ux=j}3>y9X>x7NRZG5eGI&s7A^m4>&f9BbK)c*NTa213}0 zjCrRh(~?~;{n)7>sFGW09qdukyY%I<^u|Hionz zfo@H_sm$4^%FZh|)$Tfc%=}A<%F|YKb(%cVqnJl!;Y$9czxhR5Ty$^#k~^1DTdurB z%?}SlkMv1J)vk#lt_6$P%?}&f>PzWOL1cOqC~bf}Yl_}W4VEc$P1)c$d8x>h;uacet9sW9yL!QSZ7k(yy*(_X5{RKts?u)w$` z3l}45bZx>zW^!EM1#F!&qZ3@zus{K&WZIE3s_5xL=13PfT0&R9#InPwSq0%*3CUQB zW;_kH{NoEy>(5dcTWrXLbAK77Ar(C6yX+6yW?VnK?_nl-Cx?CYQ0!91#cTaHBfXE$ zp9#)d4R!&$dy|53u4ePHc4bt_Zffc3R05h%i7msrkKDZau!r5%fz^h$`2N3^nF`w3 zuH|$y-OoZW>d&#!HSJ$G@V;L%J&)PzyY4!)rgo6mTk{loNBbjCIcvK2VwDRm?Veuv zvk#P2uyrU^E_a(!08FMrNon?Lmsd*kh-{@&qKcV-i~x!niuhL#lGc~R@}DBHr^Dmt z?2OB_kU0RZLb??DfdD$RuA{wDv)9E|$L)3Po*>m}SXU4%Dfj2BX|N$dcdgE**4-q} z{CxoUd^aO77LDITwfFJkL>LlMbaZ~)Ow_3*50f{LvHQp=_Jylk5}Eq@pd7!7-21|+ z_p0->W_z=#%Nq~p(`Hkpd(|%P?x%CvhT}J_gUY2RJfA${vZAf6ivHLCVDq|o5O63c z%JfUxEws%YpqL;@<*k ztPeBgPqf_JsMU$wozRJeL2E=9A;%!R!92kxRDH^PhqZ5XkkgtfMBje;Y|ed|Y+&gV zYx@*Qt^VUn`TwTq#ZAnBkXw&_lVzh53=Qz$-Y}!H8z(C z)s-I6N)}+7p6WuEz({DHkiDS_w+tu#w)UyjvQm;91rifMnl28h*^WvoWMr>zD@aIy z>WE7Fyv4q6`IAD)^PgcZpg3=RI$t2}dDccg_DVi&j%y|0V+o@t3$pWdAVr6=>;`f2 zJdt=z5d5m<`BoW)JuvSnA^H8=gAlMq5|w!Ar}h=@j6h2aIkzRkB|gO@CWo8^8IFqz zqh33AkA2r)iHdIz?dXo)An6P4?(R;zXRP#;q*g)a-kCz*H+pTs#?8pcmFdOm{hkan3V+ko{&;wa%kQ zk0?47PL{vT1<>h?>P}N)KEZI|+nb?uM4df#yX%iQZHbN8W_9KRb$&7sb(?swzSCKr zP=9|bU$DC3q}i$6Y!Z$-saokS!oR4TBQ1Oe=ltiKuY)2%YNpDMjcKKY$cWk9lBW_E z1`co%8XC3)okz^ffnJxzKb$f$GWrJu$jFh5@T^4sNhiCt{jcCKk84d-M+rkWvTB(( zdymUsgNPaz6aB6hw?m}F?rVEwZtxxiVe0l}54h+kTZrQ)My)%$r;g3;hK6&%v7L?C5ROZRm{NFu<$YqgN-E$iMiiJv7yPkq~pOPNrwnHfC-@C$hh4v1EkYMs-B> zF~k~~*mCd8Y3nl;$*)J-touZNC-jlZ|1+rcUJY6!o(-t8HK3^4$ExVKgK7 z=U%ZkC|O-WS2kO>%;~}o#unzjFv`~q$d!xJR4@tjfGx@R#$}x9<-tZWCOLvcG7_;Z zJ|d@NDu(c#IDW#oHG5UtJ1#0Mv6kvW4vIP zTBV`Q_KS(H&RK362>!OVwyJw0d;rC^wmCNSQa=f}egR<$a&Hn~KdWU8r?WWW#au$W z@tDf4%|t`UHnk=>baMX17wxZK0r=4sAhUiCI8hPaC(jdwRzfdg;}4c!)m;&vE8Tjb z!%OX9YJY&A=Fs@-0dGCsQ=}biCzs^VGs05eaQZB@~0Ac7d1xV!=&`bUp6O? zP^%f{w9x0}p6utC!Ha(@c~n?H27aW;#P;Fp)m+#Bh2dg*RNme6cZOx3Wn^SPu7Y5i zk-nbm9^ah8BGl68Fw6an1}b(FAD@JT1Z3DhI>MW2Y@r{FS$?8dFO(j$QzP`R_H2Qf9{&V=rkuet`J^5%-<1BW+ z|64h{&HvYg>z_p4b1H#yiE|km8EF;iu{Modf(Vego@2pr6@*sfKbZt4u0fu=Q;y70 z+n@dP-{sNP*8ZeKjep|?KWzJfx8gU#9orJSzGaZa3 z$)8@oal;OQnXm*;$3f%OZ+e{k{w^Bk!OR?yBdL4YPil(I+a2`?16fys(F{=hIo-OB`ts=F$=v{1eIP$%gD zKY#3f9dZ-^pc@+-2Mh^a2KDJ+`S+<8AGBD1=HQhf*)vh6r(J%XVfFoU+FDfwO`UL~ zu=%HTxU$2Wyqw>RsJt`Dwe_Wy=4-j>>C;~tpQ#29XaR~2!Y*XyhTMzkwtMYtxzj}M zrH3SIG*cbt^;qJ!KfF!NDB8zpF9t@5y8)*UUObt?#t^crqk4OL%PdC@<}Ev@Wx6{P zOSrZI`5WF;vY#4KXeccQ%5>z*1Jwf{yD-?%aDh(EcEYm=15F1m1N*Ytl>3@5cKoXe z^&@c~?pJh@{2BSMd&OUc!-u=GgsR_V&2Pvr^$QT9KQf0tSR zDt}5qXPla^qBX|6aZ%n~7=dQtE|QaQgS@(;!wz94^JEC6Wc#varL*$`k@|FXT1+?o ztx%i<`P`SUjlHVlaWS|!D>tl^PSnRQUB#=;6(uPe?cE5pZ{E(*sa7j}?&$vW$xA9i zkH36ERU(K6k@;Wd9DYxvt~QZlhYdXmG>)(ARnsl`{_ zyx;mn$!O(W9%ppb)8t774mkIPupchT@LBmXWO7@kV(u)KbtDJxq}~^zIADKt5R+Sr z>ozKw+IX(VUt8RQN_jFYBXn|!K(!yL8k!=3(Y%DSr0h(4T5H`1(<(z*5DGq)8mDk2 zD$i~}stJA~EecHyP-a$rzKyMp|HG09OFx?R`LGgs|LtSI% z_Z&jqefK49q^m4M$(9lZme9(y6~~EMQzyR5R1&GCE|#2-SThMOV94CN# zIdj&Xc!DRR=6746#RL)cffUu+%_+rv>M)lfLc^a@>kuO<37UJbdw=&mdJ>S&ydnqC zc(BExeKc#&tXf&B=I`x)!ESKk2SkseoiKc|X@Q;vZp!p;p#!1mAyJm92{!ZHEryni z`kz@>^iployaG0P)}}A{E|F0paPMc7B3krDh}QW&c;d&sVmMxzAW$uVCeV%WuwTRJ zC9!gkFOiF#(nu_zZ%WFU`n;$+h}04c926sPDWP`do3Z{MTWo@s0naC@A!Eq|T>Ujt z{Cwero=2j=j!kKW8qEEvD%FAIU0!EKq;i%agrUKNagke+xaLL~aV2It!`3>1s>9hB z>$eBiOv*onpw>RgA~KfKyn3ZIW~}`>?~Vv<_dGMIN>;X8+8M1qYMcvH^54HO5-K;k zZ5bWmta=G&@5<^mk#T~=tz3@_$KuxF&=GS%x$5i^M)qBaO}(OWL7A84&Q+c>Z~qP$ z5M1Cr09)c#MQinl^k)I)xcPhLCQzPkAj&NfX{3KiJ0ZU6HC0=_?Ed`W^zYvZA26gG z7;x#Y!#m;MH|ea!9@p#B>B#iDxkIRSo?!5fG4Ps^n~Fjd`#iZQADWCbuLtf^=n$tJ zn(=aI5a(~HiO%k2g_s(DKBGbV_#&)^h=Mu0w%F4=UJ@@Xg@wh;cx1pP}v5Jj=z2=B^ zd+X9)Qkkk5J41u-=*hMDm@d9ZKy`C)Y5MIyL4|AEpJ2Ov>IPFdI5W%j)z<`|wZ|r} zUVY;e!qQfS_5QIOL{|E|F*7 zeXt?&Kb%GXk&ygZGf-T0>tAY-zw|Mz?f-LwVdVm1Ab5WXY-Sw(t~Whrn%l26lB^Pr zI?B7R{_iME8s?koMd$?RP3^3_uskW(JU&M?QyuMyAb&d9$dAeF5(yP*pA(s+LeVE(0ZRq6Jmi@UV|$nVq-72AKi z8=5~VQ$FVAi-HgXz9|@8!Hcia9aQF`1ktp3TP-uybwZRs*b^bdfM8{zL8(YORo#`2 zUie)fhtieL^u~D&ScH5?69_d~{BZk>aQ9;P3 z=cND8R-Xa}tU-g z^K$KOdAYk+eSR-I>KS)U|HPN`_&GaiCl&62Xa|*z(%yw;n6YA)`9YssK6tbt6 z6QUm7yrfK5qXKxWN2_OokU<&DY&@uFEF47^4>M2|dJHd&p7n0WG4M#C}ZY?Una5MWErWA@au$?tb*!!jic<$x-^nyrHVOA)ba0EM}* zW)${fDPj${22(ni?M9+5bq0mFg@`rFqM9Wna|kr^1pJ^)gR+TX2w-dnYcx&-fPiDb zU+e2d04McGqrB5VrUGEIe&nILc>uKw%iS}5@AVU~DJ%IXkSU{j# zQh7z;kV6A$8lGAdyeFVt%g;O(5Qe|ne=Dm>khw5q&|Zpa@RbT&om$eMHMBz$;^Tvo zmt4_JH6R7{uE9`%%1SV0PyZ2<9xrPW?)Ng8$DLZ`| zuC>aTkPC8}$o%2q;e%ASh2M8vG=Q(@8Wmlm&&tjYQCsA~t1N!4tX!XWraWY+aROz} z<@N^;5&~uWSCZ9Njd;{D*aO`2_7bye=Of7d>W+zl{|n~kw*xRIER#be3sF$6(D|MV!hYxd9I|8^kwK?-Q?MZ9tU zHYa#`6)@iSPXDVVGBt!ST4?I^5or7}=*K#?Q)Y89Rpu6U?XhSZ52TdhFCjohR&fcu>w6tmcrf3|GTMpB z;I_ou`~`^tFN5;nlDb=s@{HSGw^oIUauhGM28LXv5)LK+#vv`rpFTPmD?^ zra9&gFqsXTHC|`>Iy`3GSDd-Ypgci+*@}RWWkV-2L@mCQu9f(j2#R1XQnKevBi_H7wFfW56Y_g#&iR3KaW%q$mdu*{t2`u?Ss7J+ThA*3zP3 z!r5GtFFw3Jw+Z%yvvdY2vs4ENQ&R6uYOwn?UH?3JWjy@4yWiJx8mAEFXMF}xtrLq+ zQGz*g{Vfv1RYKreCI?%~=Nu1gx*1o}ywdn&-(HS)8IdE5HPtRJKb6LDelQWK%_m?G z_aol23VMy!uo!=+&h00-o?+ES^TegkF-F8{C%kMf^7&z~MK^KpCz8~LA@anKMIRGehMG6GmcGQ- zzYQW~%rF_13Y;BXI|$)B7+Pq#>@-kuBLNC17u`S(=I;@C9-42`Ug8!Sqw%4gi7opM zv<*EfP?pQ_qFR8NFNa@Fq?+vIW=cK>GPT4CmDVN^gnh*xu4RvxrGuKvu-UH--;&aq?ZTI`vyNUU#ta{q= zj61@}`~sHWPqOZHx^~H2J}LN(NwiWi*DQUmEX1hR+!cDRQd!MTObwDD&^xuKPSvg#}QVpqidmRwb{?D96 z>au!2RQqo?Vy%e(pKBN}!vA;l8jbNvZ_3cn zP%7Z_tiSS~Cc;Ug6BKms{Vp0F9-d10zkdZ%5KZpg3H<+;Z;W;p+5mubrZ+`Qf*L5k z8~+^~oaap`VxRGdXeK8o<>#nLNguxkCbA<)R{Y(iJ`9X(Y_;eXs)7D~#||*xDlA{# zKWDmr^9mlGp6CA1PJ#t!>9K$W$7;hO=yf4P+3puVR z7cXC$NuG3`u!c|C2La`cvqA-A09Z!mY#Xi<+Xu$-J7lil;B4zihEO`qhd>A^xy{xF zbGo{^3>mIr^-$!*Pa2Qy2K0QZ5$bQtm(B$Kh+Fqf>!z+ZxqlZcQ4kzTdf_e(1cd!O zn~{-|s|Lkyy87FfJ8{u8EAoi~WCN-He2e2KE-6V!^Zb>%2)OTv%m}Fk9KqNEu#Jka zAL(FPVWDTwl+{IOv0s~jRRN6^RQ`}>g0BOBXL=KOa!|S$!2e6YuY3jbjUl>VWFM#tnAYpN|iKlG|LGd+{Bs_Wpd{;GmuH zu>%C#;m>F0vOio0JE8yj6oJC@smo37BG{|(&!+^EGbwUvE2T4=fG^NuyL0;u zFkaV8H<1R%I*+eiqhZ=Idba&!uSQk)vT5~0=wk%JRKi4E5YOGTCv~Rjy&H0C@kL%$ z&XkyYbnFbj$}woX!t@EE%AUJ(01%Np-vo9f;a3JSsr{H_8V%f3fD;8zgdeUb=}r5s zTAJLI*OzNGIJsO6`R2?4UTl$8C3QP#Vv&iy)j$@>@r~03x;?0?4Ia9hwj8o&{GBKi z?rsyKAEUemeyZMRa8g(W;j1o*1^>#G8Dv|%rBl1d)MkL@HRyDjM&wmr$F zG|dfOq)3T3;4)g%fC#UrwQ&mjZg7$WD$197ueDCF?tGr;5JA*j^E3xO>)c{!Q7Bpq zJwB`k+VxDe;^!3S=Stc*QYYwZvOQP(mb}?T+WHO&w91RP z2|?QH(p6g#Vnp3x(;i3icjl#EZ-Htn=mlqJd-{GGXb6PxR5YW6a+92y+vZZ0zIQ9uQp>hM!bWdN5b}z}2>=^l2ACeH`%nP2T$fep?DsSkOkh$$qssZShG| zW|$u4yrX)yeynuCzT*Qr+QX*C)cTW9c{w-p6s&ShNAAorkq)h(GM6M11*-U_L`Xu4_7a(qHuo_ zlG@|y=?(fQ9o_w-UVY&H(%l+RT=Wz0GY(HB-a3S+#}dvFr9b>|_5w#r0%Q88M~~0> z%M_L3+izt8!*$Qj8%!n$&h&7>ay~%TtG-*Nz_xP&JuK$%Zz3-Lqueo9#|rVQSnPlF zd?Sf#32Q=l_fvuYf7uX!l}l)OA2Vlktv>6@hTP#0s$1kq@%N;<%|0gnxrjfb+UBYd zc1Y`HXKpv5kBONxR2d}K!I5Yu-okx=tnpn$DRIMHYD@TaYdUCgrso=`6EAfGHRYO0 z`sdddq8c{M@K^&=3JOy)3R7~5WG1$5gT=t;hijQzTazX81!8{FZWVlo>OzlN%PN&14gOdI;^*YvMn zoBCB%%whrCQ9;Hxwa%6tEkZ$pEh@};Pa${m^I^~-Ndt&S0EkBq-IoHWc7vb{+mGhB z{+S}K`l4nbgDFE{4=F_iH0xQH(CgQ3Kk_$3w6)c>$7)MT{CDjCJpJ?%7;@$u(_l=< z7whVqQ+X$wd1D_RB9YhyMK3Z{G?Bi#)@iXtqBrSyQaRMxZ2IQ~2D-N*;}hqER9?FU zA3MKub(NNA4h;TtaFdx0cZBH52%4^CLvyZMIZwk%G1PPsg#{TqcQ7&0+8tI{0AJf<4~BgZ7r2jFcLC8g zG5k=4sVMr;P6VKGcCT|tdW}C&iMIji)C;_3d6Im)a>Bj!4~MNSM?g2 z=bJ`*d`L#2BB`whTTL3JL)J>M)=P(yCvQ1pqn5qnPWH~F*@3@+b9Xemy$iMItiJUl zFmN*}$}%^Xd}z=^Md$Rb?$qGPN!$KDI}bOaw|Co0tWjJiWsxE~aai@1gzEGC)LQP# zA@izr8o0~NFR~-BQpIVOj7-_YbA_hty*)TN7}$!7ZS$sPrIwZ!dwx!= zhK^uC?fKBBPo|VqQan5a);8zv4!hHF@hGTyiaqTg*-e}OSt~X6H95LozV1DpxU&SM z`pn&Jq+e^mK3;U4aQG`_rLPXV8+3C7aU@|2 z35_?bdsxU@c&fsA96!I5{DcdtLNqN&9!jeOhK5U~UFq-*C&;~$I`Xu%s>)@3oq>l} zXljr8sh1yj&cS*s&PhUnKkO8y>TS5Fv3dg~v zG}>SrfX)hc|8~}8x2qHp3(szarhQG*LOO%-)yvw3(Wfl-EIyf6U}utf+wS>gs-r+{ zD~5_H*}{Udzuz8exn7Vyyt%1W4%bKaq1Qu0^_?8wO!nD@7xZ$LoyGmHD{PcL&0)2( z`&icJ9!$Xf^4Pth#@G*sdUX+;J6;0&_0|p~O>bi9`a$7lLFmqQ_V$%`l?Z3yMl-mXDLCc3zovT@_xH95KY(X-`%4VjsR zS@X`u#a5rgmKu&c*RZ$8r}scxwXBlW_)Q;lAG?_QgKS}EdPh&!rj0SR%+ameWKxCW zdN_9#3N>|gYe4wg-~YM_{I(Ypa!;}UR0frs%~iq@59HWnY7iWue+6?sJvBApj`2ef?c-sw>UM)$ygqTU=`-a&Y&e&1jC!{;;gsKAG=UAjn-F;fjp5=5etYSJ zBC~B8y@+){Fl06bXX0>sYyRrQQ<(Ycor5nwbfcoyNB7K2*VZ!cF&#n$1iXgEjvbaJ zgazCWu7MI>hl7p7o+M0CxiWs)z&I@j?gc+M-;yU7MTM@cp`qQpTupUNn|BQLfbH+F zA%c^Kwog&$ofsoiK(rZu50DxMyP8YYFcjsjis-t#h#t} z`qyI*0{83Mw_Rc28td;D+qe&-6x^SpIt-QW-fs(u1{X;mCVy$JDVTiIE_MD=-nq1@ zH>{n5Z}N&y5IlEM>>em*e16eVb+2D1o)jOYc@A~ZHSXK$JfJi$`SMnW;YI(0$z1CW zNk2ZSF-&{GOB92*QKc73@%LgKE?#Negk4Fa#eugUE$;9WC$5`)Gw%f1yx1LelzX8W z6AK~z{h=M7dOxnX-Lq~Me?q7*POw|WhIRIQ?4GaJuYG_E2iBsxwy6@L#yG@enz?pV z#c6{c<;PF=btyVBg!ck;I9x-sFuU-)s{Ekw;$*kD6pGPT z@9#f{F18abcg0hX?pcU7L?QafMZ($kPPdkpyt#RW#=vdkiK$y#13|OImL!n_8HKK8 zunTi@qrdvb#Gu$%f=pt*XUT3^Ya)(oqABXUe^l0}-OqEy2bP&_$9&V?wdfCpMWP?x zN0>abZR=)7%%zEiA$asPY`OvaOQy^hmO$t;fYAFn{;V$gm{m*9Rdiq1v?G_cBZRZc zxomv%0bWS5_xUmC0vSn<#~P$%m_}i_iUD;-Mhiw^y8N>a5Pt|hM^kOGOWg#^ozMvm zj9*hPw7E@l$b=-8ivBy*u(&^Zz4r>gBx7F2Lm)t$NA#z^Q|Z`O?oUX#3eGJ#1)y~H zuT)q~nT}FV-PjO!u{B;i$<6%;3<4Q9D#|2F3%C5ri<0um4+dYQ+&uTR za%V}W{mI;1GBUD>j`q}V?peU}D?Y91O4@75U;1M-UTGrlH}wE#tGSiU22Cb`oB@Nl*JyH;Tt4RuCw14aO_W)nPXYEk+vn9CBK*_$i-WaHr{i~ml$DN z{~5e4*%&^BTa!GONG%YFT=vn3UwM(`A_SU5c@X3A9ZP(1F`_Yaj18`sja~7ALqcu) zl(aMC?a2#q9kzqIS@ z>1SZv?%eZg49>15OhP`yE4lqRyTqwAqDfPI<3UP6VNzout9NCwouk8UV?lwpwdJXp z`zZ?O!!tb_qeT#Nd(OC`kuom%Z2+b3?Dz(W^wQ9oK1`mhazZJ7n~fI-k8ua3sG~Ch2skUe2E3cKhBv>=3en1&JVodjA-bbA5>|@~ z6LUke1~lBbOWbEn5v#fxF5i%*7P0q|P8Gkbv-Box{D`ZWfN72NcHG9L)=(KFv5WU&=X?H; z{?z|&-{JPaRJ-RCJ-zux=GO1P!0)-a^pAf!ITb;;<-zeC@3(i+ndn-mr>2f^bUsfl z-OaK(;l^Do%&YcEf4$=5A};=10^PkA-{tM)Wx6b}aNJpc5hHU{HrY59yZxDps&#ne zBEIr)XJ=~_n?u!M3oU^rK|-c+tGB72cRNG$>TI~4yi7R% zQF1VrB3t2ApaKGKKE6_~)^_->(P}Lo@Bg6EBdV!2HAe04jG^f5ikgf!?xdaGvYB$- zD1N(2Paj}x+y_n+u$V^%J>KYFFbno!9#of~2^_rH3K9_PF;coJIKt~0r&~!yrYtxt@8cZhMaVZ6cieUSWrRL0_BU19(h^pn4Th$rl{9x8#-T(<>WTcFzoiQ(5f3 z(Wz+pPJqW@F=#!W*ejT$W)pgJD`9Sd!gq5D6j*r^9CZsdH~1{#i7iZ%8ebXl{O~g{ z?tO!1)0Z98;KrEhE0aE2aj z$AypgR9td?R-W%8qamaiaxsR0tQ2@RQ$&oFna$2DsKx&V8C==bUU_MAnnBUEq?DXrghAMM^?eV=PuEkNQt z?`#=ha!{Qs(AP}1$0)UUeL|BiZm?}JrHm-us5~!wF;YXmvBYWILJUKU~c_xooC0MS*Wus*b{QFp^e56d~vZ_Rxa$va-ebi9jMdSw7DuxJKH7J2S_Bq8a$PF^>ydtUR!!7ZtVF( zq?b)jcj3FwpqnqEy)WTu;@ImtaTCfHiLFGlfHr1({{rchNY=id(#~y_L;>9w*gXOQ z)X-qDuoSj1gGDE9o#V#WpCL+3+fv)Angh0WcJu|^6~A#yz3!3KodRffr2rMH^o*&N zkru6KHy!mgg;UO5@_U8 zg%aTWzyU>MC5Ax5uXZ&^X>a!Yp~@%mQsjVQR?rxXx1D~_fX z)XUAS@^`l{3R0}oK+|}^iU6tBJBVHb8=r8DuCWdqMis`%=1y*g0496AF4ddbFm^HZY(IvajbBo@ds2-K_3D({y$@yt=l! zRZ)@hiQ+?%zHr%hpZlX*J)Te3?m4j`KX%m(GeOubcan+&4qbs2P*#qd1coMv$gHjL zlaa-Dv=fdtRi7RYedXK%{0{R+uV}G-(wRXVh}t%%lITt{a7=wJ-2%h5MV}uQuIo*C zS%8x@aFqchXFELASj!Dv$fh%i{$F*o;SF zlRK1LP{GwzI%f-eUX3&pXzmTde8R9`>N@J{emOMlC^CHs^^?f@5xX~A_ZYduJ~ z6wg>)WUS?m2dCg`Csk~Eq);c5GAAAYEayHetvr6~?00wptf3Dtgyrv`5`(w5>tDDd zhq?u}(44EV@7-0XK*fBs8s(ZnL=9$Vcvu+1Lr_$dtg4G~l90Gv-5M|44r0FdUY(zd zE88D`Z&Lwm%XhE=)=d59ik&^+&UtYdvf`jO9p>$a3uK2~^6O}%-BjKCLLTkRjUyvt zBi|#3ZocR`_v5~iI-zGaV*SDIwGgzbHx#BuG2KF z!zgbtf50J8dfO09QJ#Bgm76FCu>kLto<664!D8yima@rf^R%PvKLJVrvozoV+9Rv3 z(*mTLzk|kZp3>}1f;*iz(eMP(_5%Fta{5n)IW7|l72(^eAQ+KZu`nrh&BENA<8KP) zUfwzrWz^IZTxjy$So~!Z*h|DjchV_przu53*Wx(UE%E-BH}3N#2^4f4TSb-^Hx}u- zEY5ci4yMb>&&!I@Z6F>8EVBJQJ3~ht$Yp4e%kxW9&{{<#XcJYgjR=y}LMc@7X zCuM8<04ek#=x~90q_$+AG9n|LP3?>owKg7qUSPw@zT=Ae9ZXhL#?~G=vyOOz%*Y5> zTm)={!(U-aR_3#F1&ZcK1~g#~&9Oq;=N{9|%Jp{-F^3Vqig-2Ttu$X4nVZ|ZxY&@9VMkA&B_9Ye;X#2Qp!cH(>(;w|S*qiS&0nQL&i;axO!d zq#li>pR0;Ms;V@fO35RNtjsG*i|wqeSplih4(LOXAr%W72q$Zr;QH(5^w8N4H<|c{ zQR5`P2cgu!db;MlrJyiy*6T$;K1-|uR#&w-E)!qGp(Zp9kv$_rtug0x3>Ii~P)%Gs zeP2~IF7VpXQkT@50=2Qkg5pbZH+mToM6Am5GGs*8w7X-3$JfHAyka*PQhE13M*+O) z(z*{9Qb^nbn+C^wb{k6js7Y`Iyr+;uO_SPF>g)z;O+eRK9Inas$UjAAF;#wSvvqE& z-?dvUC&k-8&r$c>?P=bRMOCD+?$kAb^-TK;*KC2z^51h)BkqU*?T1+&JFjR#&I81V z*FpIYHs3KR>gDA{jx#Lc!30VJ{JVs>IE4D^ZZ1A8IdrIiU9hZ-$3S$AGFO^({(CE8 zsb{X{0V;%wFglK@C*jtd?s#{SU@5b7xs9rwQ~gHEMPd@~`f*cPMCi3ok zP;h}^qi8B`Mow1d7MS7{{d?}?==*7RdHy;o%L1)k7=`?V98UIDH#Rn&<9KxCsAbtZ zI5Zy;;~2buc_ID|wLIGFKF?#)p37GN6TFfwafQPX@RHP#qrz{v7lpBLYmYu%Of_;_ zw_cbKqMRPJoNG>==ssEyJlBx&oe3L*CMcp)kO&oa{7aet8+UEJ2;mO4@ShB(z@CWn4=%M-T|Q=&^y;>=oM+yY=q7mJWd<$gu6{tudV=e!i$fO zHQ#W|3GYGBNc%3i^&)3oJw5NPn72wFGoRX&hO2q)ipK`r9M@MWEvgAg_F^>7E*D?#JVS1Q`hayH=j!Z zJ`VBd7c+%iNLa!vsKN0m325;H^qa$JjNPAcoMOu8Xeg>4KKPdadx1t?sGPlvCK>kjE{c=<`8qN??-IQv>oD z2>?y&Rg*Ssrn~eQ`20=DH}%D0{SzLagur@2@5!bLn(y+k7uJkB0hY>~oSZwFQ`G6q z>5~cH2Cy%V_D1a)q0gC*k1uqopqas;uhI`JR-QxUFoWh%;aqv|UsCF+Pq4i9<^b2M z)l^%V_dD%MQ_WqlJMgobk3ckGk8F-|-Pz364fOy?iOn+3s5;O-62f%>#dhQX{V$@_ z*3;AD=yO1a&iXZ?{NxeCjdpEta6Eu#B{=W78Dv@LtXpB9_r-wY%JJc1-v9cNEID|0em9Qw7b^KK$%&0o6n3dwci5 zF1ikYLT)!@o^J99*xTDT>Er(=!6H6h3I6$-{WuCu{lzNV>EYRpLCC$pAJ#WOU$t+c zAB7b+KrlNz`4s&frpB-4xk}($&93uvT4Ky@iH67Pt+fv@Ie#zLlu3}I^nb$jfkQ22 zH2^(U$NoavzKt)+si&_u%g@oOhw9DL%9wN zNcSD+B3#F!otGK<=A~@Dx$Z-#R_dT1YY?2PDbWY0^gQ(n`D*Xv&GW5&u_r6iCwUH|Cz&08LPNE zAe?kN?8^?ns%JXk z&DBMRFeA-fWc|(|!~X+Hq2OnD-R4$R7Zq?C0nEWC>1B1NjCY#w=8}h3nT$@Mt4*^8 z+f529DM~6TnaXDU!@|OY1Lv={DdVrD5l%*HHQn#3P`P4SO{5~9ho}p zidkEGulz|hCO<=;7b+sSxM($^Mr-KvHYIm9{aer()G>J>f`O9RJ;d{iWhD4xGSI{4 zt?_SyL%lqK(Q&eLJV#5WzC zJsbJ8aY^lY)Y6jF#JJ7cO2tnQ;{|EKc}8SYUmA*+S1-G& zSgJ#}FF*jDNv!V~uYl-TU#ZA1+mFu7e7L_K0i1Dlbt~XjGBNSLRsGL~IywJerh|0` zf$a^jOg5lQ1ig7h4_I(mxadDC@HHaBVbcGaq4N}F%@lmG=$i9=Sy|E>GRobLPQ4no zNOoo17*GgBhDQ6@+O8BjSM=vedN9N&CC}>HsAVm^W64p1$i|#W@$iVOnYl!%|AVow zjH23jG(_PXbf*>H>-CdiIlunV{z^1#|H0R=Z-uImE zjPvLCPshMTcX!%|nDg@87N{modG98|5QDN%{hCk&Qj+U< zTE<=%X(Zk@2Y~6BKxQ)9)vLmt^5maDUX^$i0H$9AD<-Uc^uaQ||E6APoOd*x+hkMf zf&WBC&ch-00T4&bj$lM;x~Dsp%-ERfdo~J={9~h|zxFSMqG~00a<%lPi)D*yH-2Nj zq#73E`v6Y?^coPt)I&YZRsXa%Hr9cL{%4B|E03$#loX;=!7FN^RxOLoK>*3b>S@Kq zCe2O0?(9qqE5o*<6E3b|nT3;iAbMIe)*r2R1=efxKZ3=`p)4LEphnGFws-FKVBlXC ztjjc#Q5XixZ$0k0&!5Dp{bf7nwRjR$!371xKQ?VYVGH<`Yd zIt~wa2n$z;jq8q&4^~rUEh|YG9eMRdP-*89XcH=Cp~Fk`%}tHB%=GIS%^vC)>v8Gb z?d|-kZhN|n4E09GYk#F1cy*u!p3%1yDNeY;(7GBGUIIvx&Mpu5=5O8zs;MK~olc=) zVb(h@_G3WRTH49aNWH%{Ed`W8TApHh4}ky+I4~Q$X~B@e{lG?~ueeBXeQ0MCD;eVS zVCo-4Q(09N$y<)tc$)Iys_?(CVL|^l`#=IY=Z_tiu}Lc@qk(=aD@YoFKrQ=f*DB9O zceYrnLaoB=yt`-I`>y4vZ+!~*vps9-NxJ%X_72Bc;OWYX2HDF~PHx#;_J@Y{^YS8b z&^6hUwT

%iMXE+*JQa{Q5PFxm24G=3=$ZTj>!Qz7Rcs&fgbY37Yq<{QT^IYl;@^ z@u)s|ThXybL7yvc|53+$s~d?2s7C&g;y8DkAF*d6=z$jJ9BeUlZl*5yNyx;+bo=^_ zi$IGqRVSr}rZ%eQ2{b(T;N-jw6^P-DdheC+0D^pmqGZ?wJ0b5BiT#7&(p>Qvr=>m< zCF|b|L^C(5&{-?3eN1vVu)|d_W6KKRNz!Mn%3gWcH0Yu2bb1ZW=zAkTHySA%-va%` z@lfgwl>@{Mmh=JKHu+S~p@Z&yYALgczjulJ4s|&dhxAHHSpk+-y@Sna--@m7EId!G zWg8fS_bY>4(`KhHRQk$Gb}#SyA|$B=B{$`TmSFS3CkqQtyTbywkvsh%8D#iANj<~d z8us8{1A~yAJvhD!U~oVZ)Ub3Hb!Y?RzWSj7s{$NnYnArK|wy;Zv z-}l1VEOp;X`e3{qC@mcmXlo@c?_H3yYF^2^{XwQ57l)kW*^^gNuC?zJM~b?-uI-Ha z)HE_!?HA}S=vQxrG!Y8>8RZM_N{+*#(QDRUI8FPaQcdhh{{Q!#vWWb zZpxA{FkuUJo3ecCy=SV5Kmc=kETg>V^%fEFNyl=}>psuU(ZUKByzyd(hb{EaoahkN zMxT_3VpSRl6j0R!YM_=om3Ig~W z<@&X?*1Fo;oRZxjz-LveEUc#qUM*Ld`=mD=C9{-e!h>$ETEY643YY!9(z5W5ajgm?GK#7 z{M||9(q$ju!-Vp4jJkO9IK2y!Bt`3A zOXzyg8tq{BG5)ML337NfL6UHv_|cCrP-Udleo@x zq;5bvpY^3tfvrvG@87;BC#`_ZRs{zJ-c=P7y|=fKp5fSce2dA-mJ-j zT6`Lxo-kGU3gfeVQ-Z8`wQqWAUHwz5sxCw7Loq5?5e`c}%5K-%{0=I0?IecR7&U+%B$`56XJoH?OBhudE#uA`lw87;uUPH;0t zSI09<4)Q`pucfHcUe)PTou>Nq^v?3LXJf;K68HR!9MAz)Fc15P3bD+emyGTY3`miu z@zwg=^@!D2KYTdA>-gzC2uU=nYjw719i{Yl(&p`(73LuX2ZaaTL&zxai4A9@;M9vk*YXv4gB{&`2Fwz2ux}~DedLS zU&JfTQt>v|VC3U!GPfx3ZzTl5XCJ$aZgp*l<*K$ZIa=vJ*5G#hOHNjNtZ+j$yw^0= zp12BXZ{gT=`{T%AK`?_)!0oMdc-)_d=YDSPqp0%y<^3beI$v51$@04x4 z!8N`Nd(&A5|V2*>P7B_+O~UjWCf6tqwPVGT6EC8c`5i}|aoPo6Y2 z@n=cpHG$<;BZfZ}_G$wDLoEH@rQok%_#k#1Sv~j(en?uqsbEt*kQZy*YD)ER>&Ww_ z-0f7(<;BN-)%yU~XR`bI2*iiJpik zuPQI(bkXtuhc4eMorTJU@oX}Sp2%flf(o|4CUNlo0=75)_=3$IX|ND}( zSL)xAnXU%u=`FIj9uEiPnM9{{qW};Ef;#X+Hfu%E78iH?FA!od|L)}@)x73;G_*~} z(xSXRw$@+u#fZBGDC1adOSL7O_dj#@^4{dg8|1Zg{Qe9Sl;zCB<^bt5RoIECjK6YT zMx=o^LoMxGx)An-hg;8aXNr^tw!>@K3RH&sReEriI=P0s2_U`!I58q33qYQ-GM|!C zn?$+Vb#+x%s)f?xISr+XET|_$a~jDx@B-c0iYHBFu-FOj$^JjJIv6Msj{L2OXO*Ih zgY^l(Tm7f5**{^Pha4vfFG6{y*_{$9X`9Q-qnfHY!LjkCD>#}qoi>gm6s*YJIiw|s zOkn=rgUQ(8=Z8GQry#y!g41yxvHS>|q)zGM=lqDi_H#CxR&VeLiVnKSf0+xmVtcK0dBHX8Qh0ejG`Q$^mC$VzNbD z{|+(8@g6`6z%i;Ymv~@VfbQ+GgRRBQc z<>jq*B6&w+LLz=>)>shp!2=IrF2ziTN1OaRKeOPdFe1&-_|G0b#3dq!7!AOzKUAUf z>utG<^L$8Wsu{BHG-YMYgn)n)d_)hdWcQ#Z4iOw8(_sLzyhm}X<9p8m$nDreA=qO5Em#^^%W zRHj|C_acM`Y~H@t$P9zeyd9OI?+U2sEVbOQe}_42(bo14={CWCON&M)+IR~@n5)&y zYV&vqy2I3RuB%>J32LJFZyGv6b2@IHV7*D^m<3HGw04hAo>maQjAHY?!A??aO#yPxXNEqePZCo+j{6B z2eN)*;xN#jz8TwJs4V!)W-=Zf^F`%?!vmR^K- z)5&q{(&R7!Wzov>w23ncED-m!RXPGwSOjUJX`2PEU{y#S_>-M2kZOHB@QSD(?-_Fs zd#|^V-RJ>C2Dmy1P3TNNO}h0-qsS4!#KfGZhgE)J{;isuMtVA9F;|#Lsu1X;lA;l< z*&=4KxDlbQo272)K~(!;x;#w$(M&bhn-=0X!ohZp(j8c!;uFBwePbvo@M;||1;wLv z?sEEMaYXTZRObVHh`h#@z0f=f@o6Wm`d7^Jl&Yh-z9QITRW|lJpx)}K!U?(c_LXmy zwi}oEpbSXa3UjYuKrNXcmu{YTJZ?fj6NVfQ^U&<_;~wzs_4ZyRz&$YRY>ALgC|OL3mR6#U-TZ+XixL4>0_^mezKG+rRY z(f#<^L}@x}?Ze3JM`f>Kgo$)# z`6jiCN55tVY(7#f>f@V~YI=%&#MC0Kefu#>LQY+-OO=EUbPN}jK9x;xL$EXs>69xY z542kr9ycxJoT_hoCiR^|%Fh2zS~2?eMc1pdyo#OKsyK03j3cf%+nV}glu%Oj_oI>d zoc-}v4ewPqdAmbmkR;G^7xV?>vIGTnixy(0nio32&6dHHmx44~TPW%SGiU=_~gCOcDi0;!!)~o(~KR)J;;53NR;<{nSe4 ztzELWcORPSN}whr5NIqvr@)k<;82%jd4CY%+8@Vw@ybx!@JTwhqi<88q|zHUW`z1j zwHF^WyQp_%FcRe~rBwcICYomdVz8W}PrL5bQ;Fl!eM3NG@e|CV`$}a{96a&y2Q?+` z`y)&TZd$L-KU%z}%{zU0MAzTq0bh3G9%7$))$COln8QXy?upfV%33#OEM(g+Nyemg=zF9h+b8Hn^X804;v?<)u2vq!ypa{!DOHH(c!B>&0G_ z;%gcFkpj}2W8!|GlAD;k&1<~e{zoybJiHYur;*FlF*`I2Nw&uvZ^{*G)4pZ%ZQpjOja9tNuCdT)gp&s`bPQg5fGx1)mVi_4R)$~;m} z_lY?tRAxyIYa1AE^sfa;I$3mW`_U@GHVQAv-z>)^2?>y0F0uNjY7s#^wx-%6FND>Z z=PDca0*7x|nEW5aRTbx%Eni3G~3kYsx04r&C*x7_u z>D(7%NJ8mK(JM2jQKpuBzG^}Bt8GQS2`p`Xt2n*y-@O2xhyv(DAi05VG*6+e_k{mf zH4p#<(?#apx`^J49na%C+wCw|sEe|)GW*`)i!_akl}t`?)Pm6LmZAT>ojt{Ze?lqcVYk#>-Du~%bf}FH*RZIZ_p#JFNP!OJ`Mv>I+x7|0Y#TJ6TlwK zS38W)mh;w_aUW%Ipb0i;H57WHCUDPsQmxVw5=7Rb*RZ}}v?Bb?-1ky{tQiCQUwFs) zs))B7=U)B*dYdD_@YqUMU{ln>qToM~&S*423gw7GNAaW%l@|9WGXR$#96*nnNN(9; zqTcBB1zBDZ>CZA0u1B~N^~KGaRlm#srjV9#Uj4CohkI&NrW~MHZr{}~6_8t$3m3p1 z7lDShx3?c09Gst@KX(9Qkwp0TA-50e1H2=E9iYnv3Rt$v>%8;xH|eWyDWMv+uI)U* z-E5&AwAAbp)mo2VD^2Ut>ee(d;;DNyWmFP&57l495p(Pu?XMc6&2ufM+aJ0~_aaNA zqG9Xi3AnOkXTnid=?+8@*7-WxnhlMhc)jjXzusJCXIf6X98c@+QvGa(^!IlC_wCqN z2QBS!D#^)tq7h$EFB4lXM^CZZP-&SmCq84i1TAfjM0;G$b>@U=hdLEl4R=5CVE!Na zhmQPz(m(F>Fqh#ly2D&T^KaJmo&tjFhk?YAEWbSryq9i{!}mGWg9Z^Jf-sD*-Di~# z_#5*bhila&X+H%{lm>*pwNUyDrrs=TOFr>rPB?DnGe>&8{#K%-wJS)rm=qlppBg5) zU7aQ4FAkj-1shI3e=dGIZH^Nboc7=Wi?1BCYYdC}a4rARI=|SnBt_e7XC2{PRqz-2 zr#G&?`oHt9)8?|RcP%Xf@ZVB@=a152O-(s9!`oT!(3u#ejX2}jiTO8r-@x^3_GSa4 zc{vAb*}=cFzCL3ct6VB72ffgHQh#{rhoUDj2GJ^lWrSP_@mCg)Fj#3IC?vuZTKjJr#Z8{yu8^1fswGqwCkg*#jfB#^ff{KFUENh~8V$UZftV$juFG@!$7`|AAkHrXXoQftoyvslA5{yV66J+BgcMB(SSUy{;DBB4Z*kM9BN zH9Jgfvr|K>+}$TNdP_l6G(Se?xPQh|HdQV&814C6=PQsZejNQq@9-u_@5{Wf6MJw| z0iAfQa`k&yA+f|4k{=1f#^!SajU3&NUL@PaXwY@DF|rAH*>+Pv5}xXL9_S7>l?SD* z>h*ReEr`pb9Cc2hPFK3+)=GX!{N5bi(nOYHs`RlN9I^i(jgFU*cvjZds~02RdGOla zZ2v9GGp4g-WMNrheMmm2BBP=Lw$dfJVvMwg6zQr;LX7^|#aB2(wcCM^vkAK|2{h}Ne z9xH~)g19l--Qw`?E;TxYmf>pPC5Z+b3N`$F2KrOQlrX8t7ZG2-uGC_&gq$Zs+Y5I5 zWO938Z~65;le(gYhq&zT9m?~?a+=(3UbXZ#92Z^lw=i87HM}-~afH;Ry>9E`XJWFv zyS)({T8~Wr%Z^F*KyY7P}*GTJ$yQq?vNhqTM&!eX_5Y^}9IoVRbNA z0WHhQ1S2aQf!d<~jhn*F=7bqrn>ToY=E6UMMI&7?Mz3yRH)b&Q)Z(kZqpPg^(jHmO z?@SUR6hLR7-&p1iB-miZ-?eq5yxlOKraKi3Y?}8Mp1sphV;QSZZxD6PkLCP3yHU&yxFq_Q5!G(Xr!^ZXv zMmvMHyu5sGE*KR>$=&_d?Pvv94S;Rqkz~AL9M!F4Mr0<6{Q8vn{5ewlXG&kEqdpd%VUb_IVxgmlhJ|IWR#$VqP#E!@2(-0ZQq|Mb`|tsSwj8q1 zGBTn_62?u1o9W;BvPZp7`oo7zBC#T66%`3Qf2|FI(cdT0SGSOdEq=s@IAfn9#z<WO)~it3gpiQBa=2bgNVu}LipauGlMP}Cx~Xu>ranB~EH6ee`*;j8jqWHshD zN#~y~3=-+s88`isE~cW3C{O9>hqxb?U1NNu-b+8{t!3+ckoDOOd5dJUbe1pNaWo~k z309w{B&fqmi2P6I=k^`wdGTC1%sV9(xf~=#QNbonK;Zkwv>xM9A}KzvX+Id8-#j_eA(U+^s5*;phPi9I5RDLA5shrUp=MLERb8w(*l!GR|V`l|>TjpbSjZ;F|Z{pb%vzDb4Hb*_)XN_w01w$l)x~Y0{X*Nrq z$n7)=^d-=XTiqbC`G^?`@?Mrkf0-e*&g~me`=i#-ouclj<~eCdwj1rYJ=z_SWQH57 z_(+{!`Yowk%va?KiHe920)9dgn|@Z?r3nu~T%?duRTo|#gUA12kUG{Q@s@d>ACsnj`I87mJm(V>OsNcXy&^(UgEm~9?!9y%ipm-*mHH;v@cONdG4*dRpTmgwxHlaKwI`7pH?E2bsX4QffTV`32oewLW z16?ck8%_7z9WFUvCu`zFd?dB_mOSZ8)m#n>E|TP<_4Q+mCw;+s;d?tLy)pC_T(|9; zPP{lW(#kGj83AsX3EUE6zSSSBPgFijvLsZ%bHXxaZWZ2J@t!$Vc3ECNIkQPbl8wv_ zY?L-G0&jf5X1`Q!tjbpS&qke^tmeZQrKZ>qZ?%ePO2-%y-3b@ z3RE6{Om;>a0t;~O7jl@N>p+i>jy67Nn4qw9lLVdT3n+li8N2%35n2gM+_=zt1@9N> zLprY?tzW=_`(hg44u?hYXiw4_SEPH4_Lpy-1nD zdLK0!a)lVGD0va+P52i^mTb z;G`v!FoL`~d}raSEGH|QJvh2Jk+OJ5c8lD5X2I%|ZM`{=TnUHEwc>uv;i~Ue`EdQN zSwCy5pfTODU|wN&s1W{qNYN6iD~cT*=l(j8(BC_tYLtvEEj~z%@XzrAOys+E67U6K z?IX#VUn_O4hFc=EryU8n>}KRG|OP2T^l!{-iDJ}@Nf{Lyu1w78h1 zuNDf`0eq=Bd@wbr#OGDb+324{db4ec?uhF(7XH-7DWqw2V?DKov^ z0I&@<pK-x!CLafa_WVlxwbj^kVh`Qx3|7X*TS4Xxho=N#h==$pF=;+yZYAH$2 zr)MM3iC+%#^MdrddksVV$rB!Hx%2!yrx5*|uh>d#3E!J%PLB@!s(Ng%Yb(r;L4gX7!$>p#VeOnOWy` zgX?isk4cirB26+)cVq9H2G^KvWfL_u!d=nirjp-Q3R9OPhw~oE(N{hkJ#AN_4OF75mD|2 z#8hA~nm#(yIzXs(Vs$($ZAgl)Lod&U9l# zwp1{m%N4v7^w}sDAJVRZ#9Pat=+?Cg>KuMj46)Zsigymad{v)QQP^Q&+< zLRP-nbiE0-)<2%yZ%(l|BP0)0tJ{W|NMQ}E%kZx}()`Wz*`2^hCQ}+y{nJ)Iy;)XD zN;FOWcklEKp5U~YJiBupTrya=o{*`$6{EupMzdwb%<%V!pA7}gOfs*uvn-2titK;D zOm_XPO8)MA(yBI|vU{CaX)qj!8k$c&{&}>N`>*?SHD26rsHa;O@rP*T3c4iUN*@==6wCSjZ4I00|mDCZialXkF%8^sX`o@(>Jipw(ur; z?Cfm1m)Nfg8E(8n*^xT<=EG=X#xT#}Bjblvs3kdJ%>3!OP}gxXMbo$Bo)`WO?bDiM z51C-;S&DR=oOqo-k&Up@bflM#j_ji}K0PV)?b+I?^Xv#sf0g`KbB9)>f3K6&2xXD9 ze4 zf-BFZE~ls4d01y0&DhN*KHnO`q4~2@Ka?xJSZyI%n_j;2WYv*!Om>N*;-FIYkYx$K z(VfWJ{KFxglm)hE(1F0vRFPt*sjdVwj>tsI$S zdM$6eq#!gQ7t771cWbyj%rkjosnYd5+cHC4q4~xnAy)5jeZ|%)6qpUTaa57Kif|2| z*T`?1aLut~X4yr`gzJP~^P*xm5kaJ|eQRk4p3U8s%B?Mxtewm!`Wu!@$ZV?xQ_5aVx8=xuXd${wj4an*et=;}|^LG_@o zoP`7ZA%i63O`c2Yc-oT(QSWj^g5%MJHyv>w5I|fh(w}?bEzbM$EG(>Zra?mPLJd=? z&VX=Vp-?s5;m_w&z?r zYzwy%r;*%TjdI(hZ1W?wtKBo(JgNfE#ydS~_!n|#ZR6rmRBnme=5;VqAH>g4UPtwc zC7_Ro)s5J6VaOtQT`vfdxO~WLt(SG|UMMktBk$Ej?dk0L)NmU8sQ^A03;+4oMcqzC98-y(P|tXojn@{uOVuZNXhHRp53#g@2|asw&2){#cPSEY;uc< z{--hfyeb27eC4*POfbt*fnwYh14(KaWyOh&L;XWAxgkuRb^t$938q$IyD49aK8+|H zZw#U+g=m}@?$#tRy*N83hSbj~$jie#uDNu|Is)G&KLsPcmqwkWi(lh*LI|dCYRnUd zt@&eZbtA+Tbu?65?Gf<7KT%@A(B4OkCDv;ht|*`hY2e%W!&H(1b`XdQmm7XOgzhdo z2&~&}m41JDO_|AMZkgZnp_5d|ed2S5>8HZR#>BPlQ}@RxM@U;Rl@J~-`xzkuvShIh z*a&6y1F6kvDl|Q!2Z?f!==Cr0xa?>j!~{ktf2^S7-pxHo7!fMLA#JyqdLl>F^2RGw z3y4xk_qWcpClYm^cWEn$VPNyBTI$7bIP%qa|9PTdaFdO{8O!>1u0%jnZr)zb0%zbo z6scT43%FxWyxWBvXzYZ~W~r00ox{+uOUJKH<2@C9rY{q%xZ^0~3!R-mukX?qHmN;) z*Pg>!&!eO4ANlJ|wF@EvB{hV{NoUH*YGe*cZxHpA!KUcD^9A)c^26S)Kjb~{V!Lcr zuiIMI^FW)+doiGL!IteQ#IjICTbuL-st9-tcNL(PFvy_!xC9LU9xBBT-0mtvzl4Qh z{C>DBDE>ep2yYbo_rUOQur7mS7pXj&k!;5U0~Gm(xw@*Vs1f3BzXM#;MYUeoKlp^C z1z8bRKZ*B=z<~5%0RZ zbgy3v>Yu~K=_;Oida-W3O5~-u|FT&h(Tuz04Q;t3BJIaZ!hVPa;gSQn()^iRoO;{@@{82bZy6tmiV0PC;JhWOeuO0crLyvMK59gp z0tqg@uXR4^tt{FW6`nH{7DHQ#1{N34h-24?w4S;P;yd8f=jT6uo$=tBg`M5J;jtfO zWhG|=Tah#>so0?!4l4^iSm|y>Tu+Io7tHt|tnMhkDfu~Y9B6si_Ij zf9v3KH}Mn_kBSKLxz_7(c<4|AV;egB#*jPZ|7e_IbP z5P^_<@ie5aURa`EY3reAf5JxEjZ*fwJt*t|FR`z;_e=ER)(A4Qs4o%nV7q3ziA=b_ zok%F<<958CN@($hg#uQg@DehuC;JBnw)l|2cDa(=#TCmgC)V{cdHrfC7hA_<3E%S< zf4Y(=PJ%FP>Is8o^y<$7`#1i&NR-YIJFIqZ9sivS9c!vt(9^!UK@^p0;lfKCHfOK7 zb)?I%Lgw)7G1w9fNgtvN!B6GZ@Q1sSwrZw=-LixD2MzgkI7T__arQbrQBDf1rKqG0 z+VSizxZeA5dGB(hb&>wSC3}YdU8|aC#OI4&orF2s0G`(5_UVBn(vVv3e9ZjB!{B_} z<0i3lS*<`ct*l@gF}8<^)}KEI;0j&;5O{|jOtX7j{>=GYGW}=y(_1GbmVWdW)5p(d zsPZf`+2hb=mh{7E-aizLn)a_s^gsz+NPEo0B}$QY0~u|#WtIg_ev*>iQ&Z2w(MO+Q zg!2qpmSU*pdSBM&#f8T$oszIig7BpYz`)-YAR%)k!vj*l0nh!1<8+5kyJ(a}|~gs8y{EcC7W=fw@Tt#(E+`j#pkxz+l1lHfyX47@1O^nfeK8kP|-&r?)Z zjuxfkLPmHSt9M#8WtQFMUnjd*zAwD(PTay=D5>A^kG{%u5(8ji&S8GEfy3kx<9R}K zw3zv82(3)Wpk9*s0y6v!c#bcHg-nW{&UId;onbMgB_|J*%?IAUBaCDn>+Y!Y8>~NF zq-@3FVq%XTJ<<>f=>}QnaiiMJd=o|*W`XItB!0l@7cy6R82*Tvt#PxSKKP@flbo6= zzwQT~&Ov>pj62?YcXz9-S=VWZUv)uC3tNo;twcP z;PMj>S*C)^@K~}ERP|vO>3eEdp?;Dd0Y}lH<4-`C-!*7o?KHyxC+pP-*4=d$l*ms; zGpz^-93|7XbTB2Uq0Z>1wZMOz@N4vt-#HFe`6lx8SMi}1v|z-Kw1WuQ)m~0c4zS!) z$WHrznqI=@z2F%s7y6pI7d3Uvt%vd#xG?6KBt=HDZSTxlkHM!lKS+NhX}Q?g*qEBq zP7yUk%y*`la;Li%Jr3hZAKwH6geVjd?}mM&6#Lw@Nq|lF zU+Q2hLThAgZOfx$ijXY5_6N)>6B{=XA|~D_+dIX|8_0)nT#VUUxlL*WXfCYpWneD?ABCgt04cCQC!S^d;LQ?d@OJ?14xZf;N-A zJB~N_NRvbqiqe&YoEE;b^Ozk{OutZ(@{IrhY?CfknA!ay@n@#hY1?%im>iNPWD1~SX zGMr`HTF%BRX6y+${LY2Jh2sIo3!U|=E6Ur3L^E&)&@nKKz~$S>{uYHLcn*x!weTRm zi6tY=o5!$481UtpMNw#J-lq8swWnO(f9j+_L`)@2N4J)R^0Y@mva_ozCp&v(b@hu= zU3K-rq?~pfDn5ij^icB2LPajk_T@y(ZS-v%!R*)mLTU%(|AYY5+*?f8P`$CX(6)1| z$l)YQx*(XSEKc*pWuwo<00APLdquB7NaiooFu}l17pbi?7?_L(ilTskhl+b`BQg8C z;a_Q?HQOuNO)n|&9-t`5$n*~nmz9>-BFcc13rpCm?{P@Ae&E1VG#`S2MUP9zh?dc?%J!LomT6GV8 za;B`4(G(UJW3_NR!^8Vkmz9|*BsdTOLFs9)N4jsvgPz5~abhBgtrLYN&tf?DQ{4Ms zoZ=rD zfQ4l?x-PF+YCQ_bD=Z9iiv8bMywKXNW~*lnfLp6E+8j9TZJXPUenpf>|Ok z=sh+z_UzfSd~bjI4oM*3aCYYY$y-mT!Q&Im+cp!8t6v@J3a*ad`D6V3hIbCy9wsez zy44rIye6;C9Oqi|mcKNURce$wyhxZBk_YrBElwVF6a7NrD5Vj7;)GE`&sRPvP)y#f&&oOUp4 z&dA7^KDW8K39NG$R}9t+=F{gMl*o{ZuF-ol!43{ZuaPGW9Z* z%(@TTY&U!8gd$poq!3jnQ@2CI^4e8Q>ofaR3t!-Z#_z9h-?1}#oSHv@j97dko@mU-K;i<+6rN*|F|f0j6%-(K zW!A-uOB-!}nm;Bd1D|mi09+KZ!B+zAZJz7${kly7aBHviY*V=a)J_kH5GU(w)t4}? zFWz<470ypqFBoe13WmB%2k;+uY4cW>CqFl+Dmd^6az!p(7Ni&fb=Ka4_@IR+;a$k) zNEu_Bjs}Y&n4;&3JX$=+>8}0nJGYW-w8(!sKfd6Po2xbnW;Zh@NDb!?f4;=q5RK!B zHwZ=Qnk_4UaI;`?-SW1b#FMYJ?sBzKm|kA7$wMjTtOS3W`5~uu+QFMIvk7YbIpq|{ zOyJE_Gnd0z1I_w^lV8La3Ps{il~y%n?juo%>oO?)azF-PW)26nA7iN%uaDDZCUyh3 zf?zZhaUSoA;q~-3Hf0jV9sF0moAb zDa6?ee8^o+dhX5ln{NKvq+5K0OP8Mo<&y`}$rpRNaZ(8FFw2DZoQFccLU|N*%w6{w z=wSy{nZL?;rmt5-hnknnl^NxmbGho1fBqY&<}CF90s!7$$YRxK;Ci-c4ytDKO(-m! zO&rlp;#GCHz_AZ3u@hOpXz+&dz#nvJ>tze=aQ3DsgNrgnqrw0a!m-@*hwtY7n5bK5 z7`MIRUZ$ucb)m5vN>;J1cgRESAzYseW zlbS^+bR~(QCM9yWty6}8*q>nczWifwD8{TEneCa;?eqC1d~J;{uTxz4KY-8wIIK>1 zY;N*)1F54#|GCYq8PL*k)S5i_*A%B2dSRAc5noAaWQ-+BD5~RVw~1 z&|_%zT~{27=B{!~9uY)&)|7I{^geilRWifZDq1!=l5 zjNmuR%x8lsDJcQB8{5E6qLh~&3H~3f zlPC2L)=77zCPC`b_72(H(_lT(uDC|Vxl56U>RQ&(!>u8j;D*H&WrhT&yIzqe#O}7< z$l}6puGq2aY?k-9^CI0Gj*E5|*SK3f;scYWJb8F38cdWpyhR~QFfOIlHI;WSV78@X z^~qCTsQ^H2{Pt_VY|tHUz_IP{<`Yl~6%-gEUEqRGtX5Q$k&%&}PU*w9h)NP6>60wZ z7S-1H;i;{f!zwWudF#@6dsmXZV~P7Db`?q&>F8r{{Cx2YzjI)+Cj8ni9|_kDspFR+ zQu0Xub|zTyE!?gVEx z6iQZ#swsXe^5MgW&!1WTO>r-T6aSEjnmr7wV~6>p0R>_REEjE7T%*TRnoKOS~9kMyzn!wa|T6{a3S?_=! z&xr7NmJOH=>Ew=h8DOuGpUuJ{z8+N@>%@a4yRBEy(@R!s=8kuFC*{I_9>BeZZHR`= z{9PBCdM+jFf0r^cixuPUZ+o&UudHasK6IJBDVz~#4y_R`y4cwGq^e3V zZpshZ4#11uzg#VWbJ|Kpel={JUF?C2d z{}_f%1r$I~im2bc(dF&{q5QEDEk1-8=`d(GoRhMSuI9^u2A7eRwzkE=aYW}>treJe zv~jR<%-Fz1T&m3BTNQl+3jiWTpf1|_F0?RGV;0=qZPyE#&BZfe92Z}Yyx3)YE1_Wh zNvVtP^!N}7B`-CHh_dDRg#}#qfp-Z}(b33+gP!g|0RaI(ascMiBWq&Q^c58iYP6<% ztI-^>+Zy{2_oyELACW^zE@S{l)nfWWQsRj&HcZ#P+KB{WkR#KW=vDB#M-$sGV*oc<#_HU%-J+xX;-&myLp{o-_04 z+7+8yI1tog`7dGQt&t{j2`C_V4cJ#|!fzE;`>2 zMPL7MvrEZ063JX$@=DQ`U-pB2Flg5tG{3LP{>@4lwH=o_wAB~+4n97uBaP$ZQ zcgX?5FSbC|L8`*D3IzhYfS{mCaE4F%2+8);QhyeH1E+ZstxD4E@X@xsjEs!3|H{hB z^tKg%kXG_`i^@r;ORPY0Rm|Eoy6MRBm$2kKWD5fo!YOhT{v>PqWIltR0lD)av#s>x~+|2-M;zljaknV-_8mN(1u~H z=W2Vm`x z{(SC?Y(L!a$R`kl7J}QN+)2ccXD&bp`v(fF5Tp55{6B~wS)=deWC<2I+u;X!N$Ziwzw#~O`ij5kW^kE zF%GNy+ZM}=*{-b!eQIJeGCBEZ0X9@FOkg<6 z$8{1vK3})th+x(3>D)f)%|Mg^~LMlTVEOFj7n|phurKM&_=s(rrUfIn_b=!YgVtzHp zO#8>=R`h-k?X6tuU2cxiwvIuN?x13IVDDx&4E~jHKqQwvb}}60e^>)KbMvimt4Q>F$v3l!ik|C~!#W_@4v5-+jOP z-!T}*@woSXYOT5EnrrP#few2GF^W=Osifq0yI*h#7KsjbRF4)LIjH3#Qp9;W-1ls^ zbG5wNbZG-C$iFLI7hw>A*h%$eQ%IWti<4nuXk%*e{Ce>Qq3AjI#HxNNkg z&L8R*-az$3MnWu1+2TE5u`x*Qu@=z^08fD%JU%z4vk{px{%JHz&qdwy`J?ww72m$4 zfA0%bTeNLz^?AT?@qEoBy(c?U*JiLerpj%?6%w<$Az}z+fDGB}xEd>lj43XluN@Z@7Ufs+UF=G?M0#3k60QRW7{1I`Sr~me$irWD1f&~3G za&Qo2?%XA7F^3e8E{B-W(M$WFWu=lx!)pmZKmo+|-;>u#6a(ro(mmA{kCUsyJF^}T z$NGb9LVUeo`p%2`)mA(0iKcFNL8*iDLKpnYV^gM*sb;0M5o*4c{ckHR%?so}Xvu@j zK>h$fO6*fz6<=T7I;QTHmv)B7q{CMOwDN`OfkST|<-%M_76@Nx=bnmnxLvN>Nrj{) z!Y+8Rx~Aoz=g|>89bE#J*MMSi@~8NCc?AFWPl&&MXAxh;%5Z1L8McyCc-f?_8wvAa zykIx(phqASeu*YBsq{x2^f<7!6dGNDVx{h=)C4D7sL)#pRZu;e4YD4+tck19m9)DJ z^6}Z5-&OFQc-3;Nh_An$%x6!x5({0he9modOw$s24;iOC?kpt;|6&2b#@1Y4Uq2Ys z+$FY+eD-^2pub;B>wDHdAEd2+^w1wuLQEnHAnZ!Su4G`x0o_AKPXl>U5{p`<^LyZm z1I(caH{|24Alpd$3e?f*!F*DRx76RSLIkC|WHoKB)dD`|Kh(X+Nq0TQdnbMJo%hp! zgkGLj-`-$!P|ag;Kjdq29z5gC!G#VVweBt-UxsiiU6G#oc-24J$I85*!^xB`OTX*7MT8j_R!jf zEK2|@0HVcXlJU{(FFiM#2>0dlW21=}^Y1>{eaK%F7L`19m`X)aFpyj!MG++hWoVrjlK(6)=GV1AqbbG5mqq zH1!*X2Su;Z`-hBxl|5Q*9^--AxXNEH8BIk}39z1+ABcHXf;_AIP7+fjz_heE-Shn~ zkG!#x4W;eeY`9?KIBE)3#H$#p(e{j4SV~J*uGUJDp@RMxvG%tj}gxV zA@H!3asc%0((3s+0K|hqslwi8JV%y+m0o*`jqy~KPFth2u7iAM^+SI>|L)Zx2L-xo z0doRaOJl(Hw-D?F&q*X#-l$C_wV&*QxE~9kP8z~9wgIOQIseHQ@=oIb^DOfXXQgL9 z17^Bu}luPKHl_XcCJUO^V2Ul?{Wd8l2N6MPqjez~pYF>8i1t z;bHh(r72ibiYgEoywp695H(dS3{q9^h1T;cig4~@W#BCUQN}_3w@jy4!z~~-7MJNq z$=T|A?gTXg1}GJ%bHIr>8tiReVfz|7_VZ_FpgPf%N@T2hm&7GV-v3$7?_oEi;r($T zjqS}0*}(4L%Ny1qZ-zT=%wOjpcyf@21Wrrf%jH6j9wK($;b)Xu=f`HJ zb%3!U&e#d;kyh|KZ`k&p(QCPllp%E{WBVjukgssN>m02#KN%To-FUoJyrHtylUcxN zek|lY=Xz?(1d-?aD`c~7E9oaR4u|a9<2u~7w_w@(+WDz|CrBAc!Z9q2>2+oHd|rO<9wCH$JV(`a5}kPN>Tv zd#UwY@piuWLhQj@K|m|naFiFl)&GljM2H%+8kU+vTv{9SUtCi^4J~|54jR-kVkk?{ z(bIzxEp1KK_5}d{bg7-QT(OiWD(#4KWlhKZ;zB8(lSvL$>_a{=Gn$?e>RgMm^NVPk z{t4R)Sc0~!4Fyv`RGP;`sCxYZTw+qWE2uwzULhbPj;yWkC==Lx$YT=ET6eruMcNhD z{?ebs&Y+cVyFEXm0E9~K6dV9-lzR#md0+_~IQ=QxtW{2J<-woRsH>^@^BpJpKe(A) z)%B()scWxn+_qO$bnGsg{+{^Pz(D-I<$S56P2++3a2xePp42Or5eDw?={rE1*Pf&K zFRstZ%93tsY-|Kp51zza!%YIuuFVaKr5VQ$`W8D9r+7+F!xa@0X4cd%wnF*#$ayui z<7T3%G7k=smDK|tr4UsROxHb83ss32f-j0qt(v<2#Ov+IMfs{#27K7gvsJVqb?rPG zniC&QSYofd@{PIzT27!{1N$#8wRl&t+IP6d4yMXUfC`nclI!oz2}y z_glcc@EKy}%vhSXwQUAlVz1Rgm!Lp}O?Le?bwkle`>TSQ0M)6G7XkNa=kD&Obv$q2 z3&IRa^BTl3gTb z)9!0`LE&2+WkvTw5f-=ROj6#1*G~UHpP}jR60I7cw>mE_P76d_K;cv6 zrsn56-us(>q-{$BQvOAJ5$m_%-yn)NxaOF&pfL_*SY(RXU$_u6T|pX<9XLV}>yQuj{s z8hI_h8%gNW1!dA8sciMI!AGqId+%O8SaRV^vj2R@xhpOBdaQ6`WNTzyl#hTC8^Safx$rt|;! zk}`(I$8>F0-%^=7z-lfl_&<@#LmMh>aF%c1C9)26dS*2Jqj}-j^1nilh28a23ax<4 zd1ktKn;U}9k4!AZk5--a}M35hWw zFHm3y_^SA%dw>$PDEQHKJB@!_Alp**yGg04Qg;t`7?`2~L~&c*h*^9hzOgO*wCV@>W9{3d$Pf8t4qPnkThjhlzS*A`w0r9A z?#@4c00MZ$5d9VUZSd07H+dr?wX+&pvP+4*y}dx+03bveZlr9WY+gI z)u*q^i|U6LaQ6})Y;=bzb@|6u;*%o>Cx);iAAk8W$^*vDq4$W4jI1cw`;Hy*cTYbN z+9-2ZF<$IlKrk0L1u{%PTjJSC(|VAa7M6sB1fxd< z{WCLKK+m?#yp(fgFk<%(KrSc8X0cft;QB*a+un z!zKj_`SZB`3&8?{0#PwT951x{c`TR0^q9img`E{5?Q4^KSUY*$1IdQRFr=LL>)!}4G*}o z*RO|QkC^x%URvNr8pZ^;+d51@-K(JIXpyIPX&?LQW}so5y?uS2jw!%fC^FL7iHOQ0 zV7xq-$oDhWM@CK#QB29#S55BB~FBQW#?rmX@Fi z_$$Zj8(6rsY8bqsd2Q8`*h=-{>2{i36ZI=111n=qv;V}#Vl)h+MogXO=Ya0dP2=DO znYCrO9m*u_$BL-o=z55-EXCZ0Ysem-{6T;$gB$)R^9Fug`P7f(mvq8w-Syg0x+4MygV-+-7 zAbR+)MCLRUd!70OSx?zfk|NkG0m0s9P`T(4@PCg187NYkr+;Wr^8mUiV3MHuE>!7< zH?E!A`!J8dKSwFkb%`Ad1R91$gNu|KX*`!m-7lLydOQKSZ@n_nK&r1_uBa5eXByzf z-XEUNiigNmo5)Mff3x3};01{HW zwlH9dNt57BwN4^2!7|(E;wpp>sf1NKI~ec@t}mkCuhmple}KFK%SrQFvQf^MRvrLz z=F`&^F_n^P6$K%J+73{YE|It|o5z~BCGxdXqa|;zS2*YVx+xNw!Rj0lh*(>_5T5*G zm4`#)%I!{zC$_U0thv>9F2Nz_ROdGHyjcSOrD4dgKflJ85DtAKmG@+NCs20Awx8zS zLmuC!&oXKAUJPyHgP6~#ayIxh1=J9A_4JH9Z3QI4*_RF$&*rpLMXxsYSBGSFrY&wy zyHTcd^si;QvC4i_Y|u&^#C?%U?7{rGN11S&1^22SOhd-?*F=Vx0CH;bhB&Ufn4- zp%LZ0-HrE)-va(Wa!`){o~}m9kw8X40Srt6BLR5p1yCkQs9#4%MDz_0nj7SHU={OcL3XJH7}o{B6xQ*{Nrgof z%pm~{;e;tXFrE$$4lq8UI2BF=Wl8z@b7LYH96C8Ytt7A@3Yk8bs{TVgrwLv)o|Xzh z`JD6?xD^X1*PF|usDsSDjZNnFt;3zk4MO2=>qw6eatlfio=iRB18O^1lDPLujzJS~ z*v0+8fs$!f;Wb9ovoeg!EZJzm0?~uyRfKl>_Nj2oa++r%2M?D*;dDOWEWlSW_PS8y zRV54v{h&At4H>fE#i-R!Qy~3hLV^1^D|vOAeu3T`_moPaz1qZX>f=DVlD%3<&h-{1 zL{=u1YJs?~lH^lbYU#ExSs(G$8yZ4AWowx9FoI3}7Rkq=Xaj$16{rsT4>@=+2J4%uT%QU#&8R^{2fBV=gc0YiLy> z_DPL!>#L6=T1wx+q@<(*THMqAzuHrwLu->HXp3I?H>FQ~u(l~;fN_SU_jsl7(1~O? zR64zT9X^tY>_+0%{1BqC(RP0}mn6)VC*j7tk+gzKm7dkKADf?$6HWh;+rEm?{YxP6 zV!DF6+)I)Q&AplO&T{!$hFw%$e2onwl#IZ9^zez|$6c7vAJCxO2!B45Y zSee*MC8&P)wZ~9c#g3P{D3znpvtoZc#a;cBtJ%In3MU%XT%fipB`IIja0`+x(8^Q2 zUJgCLB(#&GzcU~O4;?Pm+>!7JKkqo&Yl}B=9w6z5la}g^Pjx;NoJ_;0BS2GL*MPXB zw7;oBdh}^jLVkwF&8lL}{fByr0%85WPw?%0%zRD@=6=@$IpD3!Nx79k;w=}1ODZ&nP{QRGR-0tA_FRP4&cjF~yVn^r` zEqzUP_N=!Qap1JxP)Vds{#05z>AgbULNY%H<&P9ko*`_$?2ze<$%XWauj3% zrxV%l*=Gg&pZL=x6bnDSY;l`7j6DuK_P?+DO84FS@Bzmai)?22N~ZP=?oi9uT^`hzDr$1B3lD5T+ zw802ge))2)qAoha;o}db<{p1!h93vJ4(8Q%3L~r!>xqKfcF|;0yN(Tp4?cBw!8eG< z3p030$Xu-=wdU;B`FK$^{*s8L#7ha3^;VOfD>L8AG;$P>N0U(>U)H~!qNRk75IBA? zlQ(ct2TK5Hq)#@Lm*a7L&;nIks0=Vo5Zg`A5~WGiyNcD}z9KtiGe31U$W?~ho6tfOJ>Q{Y~x*jHO&DLu0!!F>7_CxO%1&i1{zlgfVE?>bfXvLl*L!uf!sv~g|4 z`?sl&ztJ57rCFv)9~%@TrA2tf{4}t$m@c=Kg$c(`n*q%*@v=jw;NpnVS@OKO^3CaVCiKXflbNn~Gc7-#@;PX(to`-;nYFp(%acx%@mf6` z&oGV@@w27CW5c+x&fjIp8s0SnnR}TRtrcninV1K6bl5*^xIXzBq~C||Nl4s4Vf~a! zOApDCSRp?5^LL9Q;MqCFgb!Rrwy>n)h7%QOS-<2|Rn~v@JuyLko)~)*qoB=T8mHl0 zvo-AW<9f5Xp;l{z7F0Qa9|MQ~L3oB!DBzd@jcUS>+1oLixgeKMbffZmG<^c)^`_Fb z{GLC6=9PlfI#KcZz@%a#LrBYQRU}T;F!{sHpI@wAk>zgOC{3(Wh+`Q-QqAY(A#o@-$qMRA_R4Yl zua5#NMNV@g$j<7gHVBGF?r!LSpl3-R&RkX~Yzji(=>H%Y&U7E4`~Vfefgm6g3fU<) zdB`&nL!%xAS+U=!AVUF?W?IHn zzC@0?74a_%_R4!AZY{gwx7LF5^*+N#5r-JoN?zJwcT>Fj@WhQwh9Bl&|7BSBkOlTb z+|^yyyCc6)u@OfIQ5Bug!Er_i2~{Trg3^S;$kUAlvB!mm=3+-tkcz%RcKro=Xj21e zYlV=$(O`Ltkha-}68@*^v-N94@j5yL+IDw$;$_^4;SIFF|5s4}lo&t<1|*6cOk`!r zg%~)*>Z-JkdU^2M=zPT;ynUpCUDae_>7%O3FK0h)qehrUykSs6qrj`76~>d`^c!`t zhGaIm4|o-x1I`C9aMtDzd99NMTeY1#L|p7}?MR?D)4;>iU7KO}#ArZ_tl3TVVHGPh zz0PH=y{K8w@4`cRi2tC9fUw3Zx_0b31U<5kiV)8jjGEpB+`zH(zQ2Rs2c2LGH(zjR-AFc0V@c)uSqaT*DHp672qvtS0o~T<84v# zhip0sqFz^9=}Y40Q+6RK>qW55cE8j7uSK5XD#27XV6WV=?1dP82`l?WWS3d%_~K8j zp&0fWkyuH7RW`1So?~Pvk}!$UXt!Q1t;81}6?}glM2CE6(qHs5{wbgg@&&$z>#cB) z<(zP{mrB7>b9JE>^ZoKZ+QB(cWZ}axtSlAC&x+rr4<7+q9l}_HldcSWVB0}e2hap_ zWN6cUefgU!j7Pz`lFpRqlAX}Geb%h$Sc4s8)jQm0*kc%$m;fFSTz6TM$<_p@c z&n%BnIcjJK{cM0regHUIq9-l~U)>x9J}%7RS>>H4TZ=^^+6Y22))@Pe-Jaq5xM zaC7RhSJVFG*Id#mi93@rhxpTOe4Z@Y9{<-US;eK7*nkeEFMKaMe-j2#df^Y{bi|t53bjFaSPC6FomGeS! z4ePVO9~kv;9KM5@%!Fa*x(m4)t<`Upe__jCy-^+wvoE+N8)dDn4{6GwQQCs8Z3y^D z$Y+sTknm050_0z2T7t5G%G=cb7K)!R5{H(S_He-pIxbSL_~)D2F7d-``Nc>fF%IEB z39dr{FkoXl;cND3Xg864$F%Ej9bd$Wg_0%QDlrvNu)G;o;?D)cc!GC(#YxlZNsVv4 zdmlk}S8JSdmx4@B$^HryY2KNj1N4&~H&L^|((p^x1vCfeD&X7zI(Y(-GP(N0| zqy{^g5mnc|pyrq21H`{nVHr&Ph*C)3x{7CUV*gYXoxz1=pvUhD6V)=?+7X}q4L^;T z697p@GqLd4B$E32so;s?h_IHPBfs_w1lY{QYPa1SD)(^|Cug;IHS*YzXmi=;4W~W& z=B_X~Pk)-KFAkMC_(}wb+ebZ}6dzNkrlvqAa^Q&MA?8i0O^a&Rbh-=4Zg##~^Ch5Y zle*Qx35xOK8xXhbrsAl)dW@YTR+S_q*IYQ1=f~TnmXGub_TFQ3P-^7QQ-~LGPG2S9y@`+p|%1uXo zcE$Vv{c=lvr-X+vBV>iykTkmgkkwV2bXXa~>-xuW1JC8a_CxKWWKgdrW?7>i`p%5G z0csU@m5m#)&k|V+K=e8)ceVd!N~>t9uTuWw|B;u1Y5`K%VJ{)wYDMe=JY!_7?stO} z#hWRULytIP;9y1PyGDh^_7e7WM|?O%8{}{dZ8wIw<^=e!UCbX{k6%v5e`&uuCZ{*4 zNwR5I)JESFN}?t3MdzcI(0YooR9mW%U?EJ<;|4iPe?Ts_P~4N6f%^PSV0mRYr%xrXZ|=4%<;;TgTxBL&{`^9#`NkX-`CO@ z9o#`YOY11=U)x(Q2^%>usUPWRm8+Bw-2IhZ{1Rtl2jdb7n_%x_ix%GWH*O(5r(lK? zuGd`x;mZp&fpHDrtqKerxiim zo1nW5P)wIaUAnn;{eVHW+h5r2D=xqMFiXm2JQ+*+cjwCE@ipz+4(pGEb?lcOz6%QN z%1{;Ue}59JgtmtNIq!)@TqVFN<-#4c%qM8=L&waj3rMB)aW!mh%3c01H}!^`U{INvdaAZ)TK_!)}GM zuNb!Z$&%2jjp8>@Ot#M3Uw$;}S0h#4)gujb)+ROh+!S)2XFb)qb=D5s;2ouiLxjHG zW`?A`Lwdxah6|M=s3Pd@hWRz3<@iQqcSL-gMC>U3KQdECpwmzlV`?F?)Cli;_#{ z@6$gcQ@`}DeftFDlfI5AE>~tX8os~%t-xI3&SgKA`N7SCN$Xp1%68ddS5@fGZFu^w#>16Pc2x2swvf}PdWV@}u2`j@Q( z)XN)EcX+(he8D+oV(s1V4AeGV&nzhisy~I-_-$3tYLPJ&FNdZlac+?t`IfTC>&fyE z;}9zc3731))XQzi#J>G>S(@341uutSQF!?X2~G zSjquK*v^e`v&*QL@^gOdiLl%|^Rl@-d>3_#s+t^yD#ldxI|?%~)mx~Kj}FdKg`M#f ztAldb2hrd8TL~uedc@dh-I2RUT||`ONA(S5+ZHhc_VjJ5Nk!;aBfg?P(gs}5F0!_M zgFYKF+g6}TfRbW0`FCowqNm0KbAf3NP+`&67kT3eu!hXJ0zux$<^o0MJg8kJ~t5cR#Ga9Cej1&@;hZVZlp~KUz`JDy6B?W_6r9YC5Hyu`KL>$lt=eK}+Nb zFZ-D4*rPt|+Mal#X?o%TBG`-$F)LB6&o6I_(ZdKMj5i+k8lxZHyHYxc)}UI)U#2&z zv%`QEjL!oKiT?f<#JE`!AQ2Ptp*Bf=(rzZj3uRs=*x$V;6$dI&f9l87az!q5th6Vd zhphZJnY_+ds_-s03?GS|ZZ2>+!eX;nq)b^6h0dFyn!L`+R*cvslT(;|Xw&B#E=Fhl z7P&S_-NMP+%S6-Oz!#q%3YU&E>KUl+)G-zPVBED+6`kC1=hJ>j-b<{z&?H>Qr+fZQ zd07H()DIxt_?4t zclh!QzkWeie|rNrnFZ-^VT(mt{HJPIB-boSe04lMv9+D*Xay?Cc~#5u!c`)ijPY~v zoP;$Vkv|tm_Rr?<2nlz`)!!$p!h4`yCm}yCGra4?1ilg3{gme3q$K0MV>> z;?{x*(u0EzbtZrCeSb`$)*r*%c&P1h7h8Cb>@4c~Y(Kq12Q@5Xy+s?stHnxn1(Sq8 zRNkda`@$ee*ae%>0^l7m3 z@~_^3ho`KuF}W+)0uzwuv}@r)C2PCU5f}Od%-p{gE@y<8qW$8c?`D1BlxeO*8|iM= z`Egj>1eHGp4Z@(*XdtXqRVNp;g$2zw0ayF+l+2FMuJ!|#62oGDz0f3Ve81Uhz4UfoZd*nZ^#0g~1pY%<-5KmY0?5PGdH8p`E`||R{QjPGlhlG0~%D=@3R!AIS zltsfy8`Nr6K1F{9N)mfRtEHKZ@D^D0MMD4Cp$W_Hd8*-5RK4ICBZ_x zw_fOZ+?Q=FuDi!Y<(HG-lcP4tFr);s|gp1@CtY~ zw^UUD(wh#JZ@xeOpahv6=o)whK>P)oa0AL;rdxL?`wy(-=igU=0{jaCro796va&KZ z8rl!tp=z|mpL+G$L+khF8lv0f%K!ADA(=&m+U0L4=8$~4LHuxy1TtH_t&%^pY3Ke& zi1WmttRs`pBIZcUzxhJ`-{+GpAg<7oI7Gf_U0+$T(SJ~xv)mw}R@ZEj+^(O`%~kV1 z&jVwsp8$2iN7k2TWP9gykma(+N5s7>^S?CCSqN7%dg|DQy>f`aYoDp6Ge$pBO{SYY z`AxQKdPb~8Gi+|MA0>KIEv*yJ-EJpZZAL9*i1P7M#g%k}1lt9EUD9|r>;QuwL(ob9 zRv!jvTPv$SGc%+ZsCNK9v##Vn=eK9}_a>W$K_0GVm<};b6NMEumw%Sg^`mOtoGpjb*&HU_2K{KMx@n3;tiTaW0(63igXf z3^_odpesO_36A6Vl zG8oqC%k_auZ7ZFzBSbFR@iG1}hBI@bE$Hn1)aDe?arXSw`fmJGH%`Cq2TN1&A3Gr^ zNZbi@q%bpqW~=N3^fM@j@8(Ss$0CV$PsQjCGC+3wAnW8Un4c94f zwF{p$g-lx7s7)Gl<2|s!iyXxoV_Igh;QphbiJMCAtNP9xo{Ou*KjT$NhE~&auPn^_ zWtDTi7c>-4{8nU|XlwKT*hZI}LP!(n@#Q|}Ag z03T$I$j*>{-=Gz-YN2%Po*6wrX+uir>Br)aUgZSMvmT^5-TZOhkYF>e)+tzqFE1}& z_LT;DlOZ&0Z0PQ8ND62xl7zr7BqXa0($Vucn4ou57-iXu8fwyn&!0O57%cvr9jwu0 z#Ug}RV8hMfh`dbQolg$*uCcR2|1(ap20!CZDLq5jgxiZJ_)1$FO=O>Z*4M}g6iNM( zRtK~Qf0!K`X#BYWS5@%o6MoI!_kx85J@8#3DykuHade1;y9x~o`UItP-h>SHmC5Bv zZU)2WJdvsb;L(nq*L@{^rA|_I&EsUgUCUp*Hx`mGe%a9_6)4*Wy)?3bc3Zg|**|`K zu(MMxiGYX*35kXolmN4^pgOi`fXo9eXnMiM&rj$GtmQxjudRTiu{sEv^?>@n?T;lk zJqP%AHc85tioU1>Nvi}$M4 z*a=EyZ4Ra1w=Gw#gtr;4imCW$@B770=O@>2N)ARv*QU{MPj7WzTqprN~yGR4Q8*jO?}&$JVitbvt%D@&@c7i4eEBM z{$s^4z*XQqoi?H4M6?T{uTZl@0i7<`x;*Lj9na27616hU9V2Ff(wOLy2~cCof&V6J zwHEjtP_q#YYY?@!LX}Wg?vo6~V>P=OI;_*}_0Y_9LFyhBOzlh_F#AC5AMdYQfdnrwO+*;XJB(`HvsIHn1o>#a-C z^0IrSw?R`4UB6Nl&#*f&HT<^uBnvnSoaWW6XUsjMpr@c@sD z4y#SMyDkd?m=V}LT~T4-Ea$*m$bTjabrl;pO3U9{Z^wgZ$c^su_-WU!!{F2Vn<6@( zfCnb5{>!EJrNLbt`#;-N_J7?L1-3>2)c^ZGsxa^YtI7@mlEcxK)%BIXJ0#Aoa+7wj z0=)Y##ovRXvN0vlCi(?G;O6n6jY zKLA4Cy(=`l8*M+#C4(t+WdRLKHvd*BKn5Oy%G1`2a5a#W1MG&y>g`I$C|?suBAG!) z9*ru}u<(4>MpMZ-KhQCd1Q&CK?>Z8g@1 zaTqzM5-T%V?3i zPw?onegEA?1<#cZn_j{Qp)Z~H>Bq2G!0CvCtCZv=?hn9G$@BSu4-KUN+0vM2Zwx3$ zed5rg1`bRIHobqBS!s+BzseOM30-;~g0V(zdqV)sk$E01wc!NNm&C+-V zcjL08te}vZ*U2TdT@m#Qap-c$c_nv~==U_@o5iWeFmmuG^hTyvT-|hqkM_J|zXwgJ zYJWtke~oX%hd$LTl#u*P@mVGJ)pfNtzmwZj_H;BfS4&C4Wf&X#I4cpC0eoQaU?_~F z%N%e|5ZB&dF8}CdzRVyC<1JoEf=_$s9o)1g?c6y$6N@NLCn2WiM#C*-dy-vT7z2ke z8upHaeSHSF!T;ZgOtkEPN8H zrg3=WhHT0mi|lQT`UOna{#-bE%RT|hdrPzXt^xcQWf0FnGokcI!ULuYxIl}@l<#I|HhTZDY!VCw!%tgL&irWq z8BH{d;Z&k(b{m_wQ zeu8~L1nc}ZKP**$kFZynQNJW#2!7es3Cf(aDB>p{i0W3$F7He;qHtteVPTbJOcAmt zI;ObK$9MC9jye{hu$~{y^mj(};k|T5%{Pni-pct&XDulGtc~hs%Pt?Z;NVR>RLZrk z6zQ;57D!ef+%P#LsNtibj($w0R?%;}tn_`$O`0zGy+Mgbv^WeS>4;uvrPGHaYmwwkL0kzOuL2w6(HOG6CmT;rEQ=R#>$19|Vu{eNR27UWF+Xnhbg{!jZFR(b-bCv)?NUtGjdN|oz(s$RIDss+~q~wKu z6Kj}@SYUqChd9wJ_Yu@7_gMJ78h^rI zZs`^%4EsD06R8`47}lcx)h_3 zuwAFj*bGX-E-FY>`vLyzq8VplWew?fXIIz191d(@4lx`#(-)&*{;?T{9S^D1hi=EL zg+%b=Zz=;E?RI`^FV0`$lm2aMLkJ4;15Nc^EVhI?I;LYja6BZd_cZyn`D^nH?4-cv z@zH+#-P23IdvLvB3tpW*FL^GakDT(NZnUF0*Z_`O?~4@$sVRy1U4`5KcxTvliHs~{ z9W>9?>1kvc#wO)RAP;AcDg73u#fN96BKMi#xvIzwHP&nEIp;I`g_Vxv9qbaaC5Bs$ z3>}_)7vi`ek{yAM= zZ~1%o-?0^RZ~G^*wsikIaP(DbB7p4{x(-l8UDHEm~m=w$C(f$5Iq@t_Gg3!ejFnBwfi;y+V_94VAVC4Dt) znA&0?3tiq4zC>dD@Zkf$;P|up%wnqk%Xh#6ALwOZdGZC`4z&QnPFz=S2BOeE|7RQxS{c$vD->wYPP<% za61kPt@ZLUWXN8~SZHPL_gUZC!s+R5QSiQ8h={mNPB{D1*{R9IG@O)hM(q`7(;IMg zOOKC@e50R_@fA@Av9cs#9K;+rcnzHT8xB%;Gh7Z zxxZfBvPUR`kDY32npG z)|JbVyit5OU}k?YSixG<)I3-%Jse6Yu6+FER=`Nbb%r3Jkov0t}$DX zS5`B~(Df3uVIj98k;*HhPcd}&OAab|=4+cJ*U9k4uj`t&Y4X%QpIZtaUz<@a6XSFx zM>2a6r;w-T2{M*_&o>X4MQHt~OG5DaaO_7QQM$PV zlOk;wwOqUn`}BI5V^XM&kkqLDJO0-RiXkUtKb4)GDQjkH++2#ce``-ppANRQT?Yl# zV&N?D@H!Hats}4BFsVXs8Q;z|+1IqvtkOzVmqCE>{I6Yu*R#RU52PJow`juv_rI)t90tC3t0quCRuHDqUr-V`LD=7 z{bKm(@#KjdQjSO!o&&{bxW$6r1#yF?0@CiBEN&~Vnt!R>K=?2_8x7V3+IX7=5)3i! zs!gjs)HoidKzk3%`2MuCIaD%QF1|=CrTC8fc-xi%VUdwZy=FG$+1HI+zI>mViKC~6 zOH!AY)DJ1ICieI3o<8+ePFuez@%fyrZhMI<T^ zls1q&$zGD88}SYDy$vXmJ~8sUjq~vt`Fql$$Z)k=QsSbopWMf99o8GQb-<+lbxi9; z+I8ANozTBhFmgP*twZAn!p0e?8yjZ51wa*l84$1>77IkmG2f6zlMtMZ>EC6WIfE;QnEy5u)I97hJ#0-)kIPTB2K@;@G@Nonrfj*PeIfE-v;!@j`*5SQep`m|9%yXtn=vT zIyaGbG+5Ez=}FaDS$UyCa%bfPq%&nBrS|3OL(q;d71!aXf@|Ppkd)SolEugL)8soQw>S*njn|zOi(*3|8{nF9#zVFv&E6NHrY2Ev0X9PYz1L47~PeOml zw6<1ht%iHWfAkto?rWuYXMn)Ey*H(~cI1WZL@LPub}WdC-uW(wu!1u{Ns?b9qoCl! z7Znq;#5O9|vS0$_E_g{nu1H2WKZ>uV1-A7lrLde+u+kW%|E`L1yJ}MQQ0_8TriiyX zkbm%_2wGq_QSgWPoi0;li@@DN50nn}(!!L=ebo?s)q2!Y@i5Qf8-2NTYd#vF2IL2?hqzCIB|~|QE+q%~6Kexaywh-jdZGnLXm)I2?a#63M&c(Zxwe7O zF#@OBWCgL9Aokrq957>Q)>jmD#ryuynobsYs!pqX7vQP@`yG(Io$bzwQ zu~_P$u5W_)@U^Yop2GFDLNBIOEhdhk7_Z~`%nak(w`vi+}F>`dgs#Q@Mr*l9c*|^oF!p?=cDCi>c0PvueW}PvfaLi zQ3RBhlny~!6qKPsDUni;E+wQHx*KT;LAnHS=`%ljY9 zT=x}wueJ7C;cJmGW)ou*mimMz5iBPu>J+%)X#{Sd9Y77~^1g=Gf^q)yYw&KT#SPdQdZLSj4HXq48Vw zA+Nb6=3HtPl&zuqQ2G$yGUruF!0R`Apuo;l zPWSuUgkU(0lCl@fG~W3*@*7D5M&m5dzMZE=MYSA@bn@=SxfBn%Fdz4k8cmdMt~o3{ zt~^t5xBc>>-n3m6wlrdQ8_85W{q=v=?T-EyI&8G`Wx~}(Yc2kajKZvgQY*b8ss2CS z&^cACpOdtWZ_aGm4MZ==TlHHbY;3Pb6oT0pv6up6(H~=@FlEY2)!DB)o(}HE%6hc| zVG;G_KgicB3=gReFW$F?PS-tfqI8@Ks;3I?d>z9!ZXhrNTCdT{+U(WJ>uY9I^Fn+5 zTr(-T{~P8bd5?qvjRB=}%(&`rHK%c&7h}9X$Ox$~-RuuYRrm!){OSx1hv-M4rZK}% zy90sLOX`7B?WDb@}HvPFDMHFWo_rQ@3n;bA!!;N{v9G_@t9fmPEH zjupxkxh>F>iSDenhOg9XZ_Fh1s-oy+#xWbaqJ2BJ0%I;`C`IGrRfxRXhFL*k6DGkU zb^F;*cgSUGIAuM-V<@SMy+JG<$dJl8W0$oXuCVTW(1dsIE7g*#)RroOC2!V`kKs4l zkYS(mZxs&y`+{QApb8>O?q^fmv`x0sRvJtO=eCE*yqTIt*T_3Xo8Ldlu+#2M!_-tq z5PoCVGcB|Sj+&FuoVa00FB9IhHA`Ddig{aZMSuB{j)!;E z)O=H#mIkq`+E&}VS1#Z$ygoC8Ky3BQto&oeJKnxF@sHJn%v)_F7+VR0ILmU6Y-(@Go9oWD}1#l>(ACQq`78cE6Q-2JDhE07*i?#UlZVvq+GmH>AK{iHK zp)lW@=?r$6so&DZcZ(Qk^l8b%)U)-xVKH3_=h4syiOQU75a*lPLrK3o1IP>b?-#FY zv+Dsm6T>!W5VE}`47OTPF)|(WnfRb=6m+Agt-jm@XH~LyX3WXVW_MFQ6=TS~d)t5F z&$AARxo@+os*njeY&;#-`H_}E%oAFgt9j7lfo_k{ACW95=-0o(^u4s(tGZSu()B-} zhpCa8y%!&kq=k{OaVv(U|eyKI0|j6@Lpmu6Ki}IMX5T-MJNQBh(1Fbol!MeJD7MsHQhhY!9UrwKdK@s z&tX`c1t}^&@C%0rTpF#Dk)i~Dap&Q^|A-8S<5QS&ckWw^al%MH8C6K-j?w;Pi%&e0ifL#|Mc*oIvze^ zZ2aV%^ND+EDpvQ*${D7_b4~SM-@AZ@_^&B|#`jx$)|Qr**47_yF-(E9AjTmft29)` zMH&ji5glw!-lpHl1$sxM?}%OhW2690`O{Y>G-=#6#U6T1HbB$xr(k^ci|fYUqyeuO zvbW=y2E62_^hauhx+SyfnZ+Y77Y>E4vp+D?m7aRsWT9i-u(%M%BSnVJI5X+$E1r<86dlmydS?-VbNpPyS;B7l zc?e$A*gMY=UN`)932V_CN{YiKOH=STUPT@rHcU>|4jY8PJQ2sWM*_2qTqo03GZq>bMq-O4%@_+mFT%u68eOU>aTPEn zDto>{OWPftXxDc1;N#T}rfXGSzT|gXnw!K3{hHJ`85&Zb7RdlGQCZ=(vRj~4DUPG(Y`bz^mX+r_m7NO~n@F{q`!TUMH{QPE*=gMqC!YMY*j-sNT zl&8jB7Z=+-u6L2f@|BfgKY!}O7FW+(!vH3u^1e^SX;0J{R9dJ~_|lvkZmC@`_NH8* z{~!dghK*nl%>-Dh|7%%8DQU>ciJjYKc45&#= zA=z;gJOG5o9bt2c2S+D{u}BeXXTt-6f5Yov&PM$w|61Nbnp!5#iI%Mj*GLn5qWC100PokVZV^Q=Lss-T2OF?mN_BP*vMg7Rj6jc@7h^EE%7(T z;;VNH6-rwNtgtXq^Z!1C;b0CNnC|M6^)h^SQP+%794P|+eh&X&^D9qT5$tX4LJPg| zZNm*%e|r%Y!I8HwJShecT}BxW7C9I-^ux;TxOGF|hayY}={ z0=KHP+HO-+Fa%OQwbcO^bbH}73w4x;m)$?RGj`?kfv_N1NiG~S!##{xxBsG<<tc4}7#&R|_%mQkLFLV0eYC+b z6A2O;9-;SoY|pDA+r-gi72pqFd%gmE%AFOFyQ}~tRGJkG@kcQzS1uVf6^M?NeywPj zV?8A*GUXqyofv0j84@VLKSC40W3#{PxLA%+Z?L(vQ~HzqyV=;gn}tQDGmuH48j4zv;{_T6*A3?%T+OT-PKi}j%|gOWQQQr` zvSKtKOeMBWKKy$NS0JGz9#nWmpu*d+CPa#m$$jqmD$`!yL%i3i+5h(j8KHC^X>5M> zUt1oGe?(Xyj0OJ+i~rSuvw=O>5uX6<&M4oYq_g*OZ8#sZ zbG2Z40YRyK=RHv~&!vsq@R9XYn3c!bD2*)9W?)6NJC441$`VLb`A;tA{{)hLety7$ zGwm+NTL?UCkjF$M8Ty(d_|vJk)(l;?;4$5bqw1zuMSy9jc@_mSoQ) z6A(hm_zGX)i(dG#;oca5u7|E3e9(?_81`Uu)-1LyLx>5r;f9_$-J5-s^=BvFU3%Se zn8GQVGA%MRp>Qu|JZd0Vukcz$g@2|MjYS7Q0+#7cAXIYP%CTdc9c@q;! zX*E)(|3rNhcUJr$sB7@N;R9)N(g_ap#gRXGOwLl`D7DTOa5Dx9b4?ahUWT3NJO#92 zRA+I>S{au@T?H6aHG!F8z-VJ_qM=SF?f3Cb_$6L&q7)KLyY;amAjV{RiPIY&%(rg7 zlvpozk4F3ML~g37EUyfUOlJ2S%$ETT%D>lvZ+X%~74&~5{$AfVxO0@!*y>UA3iX{au)cXtPZUIlbIn zVAyS(SqcSi<1bLI;~#$q`zB}}df}5I$tAdNOolRZV{*&!8qk}j1wTggf80bOm5T7A zE7nu=_O$l`9jqLVjak@*c!3BzpK8a1!R2*?6p)4Nkp?(D*MnyMWYK>}Kd*n_{W@&-gtusSZ* zGINQ$iGJkghn-cJ_!JI#cXa27JT@B^Xe3(iTDUUZPotybIA+py6?Qh=;*@oi#Wr)7 zG??N3x)l_)slAuEfUUM20WG^C{9w+>BoSnLEkyP$}>Zpf=i3>c(kV$y#bUeuZ zyLc_ItGEWIFHsXOGulMWp5$*RA;o_JATUvqZB!{9Jo`UOdyqi`h-B^ybOaip;O+ym zxm^MnFl?rpnwuMVbAcd-4^Qv;puXb3K#EE2ePjto8jj90$IRaTVK^KPj8t&pq;Gug zRnsUoq$b5Ou_H{_2}(|vx`Gz))*H9txhIpKI-a{P6=js(WGq_*Lcf6$Tqc|kej4E6 zzreIAi1;rxc82r*^y&jG2V{u9L4g&44{Y#VU0gt(0KE=rX#yeFQ(@uhKa2;gYa=<& zb04+|imUx=Q$kOBn@D^06RbVCgX#T1@Co2rBpbNBkGqv%iX+v`J|Pp9e6T5}y1F_L zIhbIDgSHok+H)d~r0p@9RILj!bhDw52S+$2h-*FZ=z0hBiK;Q$Aob?)`w#C!Uj@1I z?P9dcvLa?F0bBb|A9Q?J07!kS(iEOVyYNnP0+1_MZ29*37S!i@<@B~GHR2Ho6iX`s zWz0X$0}@Q`f)q%gH?|9LezUy)chErC$I+(%6s;(OD6mtRs>bdC55DVnIe3z7V4s?_ z3)NXt1@Ca&R~L0ZWl>== zEDL5)jG#H3Q8Elz57L+P_;TWtwZs#nXfPAS=MX3tI!Vlp&}UxooCLVh`32qPj#quT zePjobAf&kC;E%izjqhh+e;gdjkueHTCYgfF%JX0To5< zOEO?BHGTM#She|rfANdIly|SGt**1vL*Vy8x4i>CHJ3e(2K zz^kI1uC6YIpxmklgizV!=n9^(aRL|g2AA>sdx}7@vIXG8@oGz(-ADj*gok@32cO)q zK14)K_nRYl-Hxe9)AuYwW@0?+>Q1nUVnKo)6&5D#*7{j>KiT_A>4kz7aD<&%5sc>H zB4xAsf)9a)8RRVkznf!J+Gm*u(gBYGn4oYz2`u+C5?m8&c@g>x`d);A_+N`RLV{Z% zTnCVqXqWg+J8@@qfPwLp%%WQpk6JPS#^T%L7P2k@NIVKm_x8unT!|e-DuL=;~5koL>v@pRNKpFf!Z|l;W0*h#R*1$cBdMz`!QOLJi*v z*v3Odomm~1NWICSPQ8n_p~E2-=%op8r^koO|9re?GZ*>5V@w$iJm|pR0?87e!4yBa zG$*~JVF@rK{I|N>yM7d0)5+Dh$ZaGPY$EJhao*avKbQvOz^HkSJ9~st6UyqA{c_%n zn-z6ty4LJr(!X?wpgxb;k3rd~glzt$n_1S+yIuGlWQs&*0B;J}eyF zOB^nHMG#6kfSTtYX{e8{AQ0qOSV(FLO<}&{#=SjzmPceD+L@4wN=N0O`;=cB_m{Jo z%Oz)sUw1cmbs%;s9J48>0ABC!P3af#xb4|b@Lv@q zUSX6tw;%})G-`c2=eH&H$TH4@QR%wIAV%XKGn+P<($Njy z-9WVa?<10wl=M2KoBeT}=usA#viVzvFj=(rUzzE|S)-r)4vRittPfv2wvW$&qO0IK z2%$5dWj77yMaWGp4VMRb-@a9#(3Go++=Rr1I^#^R@#jsZ+-fohBB~uhz(4Hn9s$Pf z0o~0CN}|D1+tr|=ENVEwHFvl!p`hSRe)Fz5xy7SB}&yB17~FYc;kx(E%m@giy>s^jKiYAQ}@2bx8& zH}7%vDH~gOzQqP8T>>##+5i2dj4TT{`zZf^zrXK$f(v@`A0+0Hr|8nY_g4Kc!N$mH!w4OB$Z0xn@ZLUn^vX z54viy>&G9>W?AGL{yrsp@<+`-qvw4NU*bMj+%UjNdz2AMF=wM*qI^zIYvCz)Zc2*R zUESU49PDW!5uyVr+TtHq&Ubd`lvR%zk51B4qjvdKt+BZgrJc>M3)~ez9PVKIo#2!4 z&aOc^nyY)diUnY?1_pG=%s|r%-y)S?pK`rg3`^3m$afcUI2tf&YL_tW+RXKU{RBF=g7yYjJJO*yuU3oaNEL z!VHzN_stmwMt%-d&gU|5pq}s9VQfJ`{q5UTPv)zBhCxuRn?CELx3=4HS>|`&X@wPs z*9Ya`U(!-t40Ly^N=Q^69f^$2Ti@KlscT5{5h-7yl%a9dmC^&F(xc3bdKNVvAG*(`5w8marh`t$V# z6<|8%6j2Ga0HfWH5gagC>9jMTaheeIyNlAhgS)ujp7Ak68`yd?2Y&)JmSU)Le$)ET z3Ne55WR)JRmg1k%G58vv3wZHRcJ0vn|SaAtn}MQT&i52K+A%Kfa9v-U=E zqLXVSKqjy4Tz^m;(0Vj|JM(*_x+)h1#Tk2X|IVL@32$=p*)sQ&N3f~ee*XH%tp*>G z#dou5b0bmom?b+mi3z9dn(Y_S^Ya#frr6r{%*eM;k&!8xOfh;!MuA(2DZ%UNJN$n; zhHr;MG@$JiM~d2J{UNVTa8vxRk#dhWS}Oi88npVj(<=MhECd{shbmVe!5hV11bdRc zr?Ll&&>b~6WBk$o+J!6g9?{ZIJ}&XTQxd97+5!S$w0~+hzVVQylr4QBff9B$Q5IAY zsu&7+^C#h0x@|$##Or)(UW!QKSjvszYkd#3s z!p{za0E!*rt}h-(c7d&_yVZP}0gV#MKgxc*sv8!LXKh*&gI(44PP_heDB~o-1ZSce z+UQxJ%?@wByh&y~d1)7O227Ki0Mp$uG}QkOTyI@&Rj#F!&`%+4NRg=7|8Nhed{7o& zCOJ(h3F!moX`}pG!tElCe*4T;2zmbu#^vQ@P0il^#-N9Yy!UGqdNu4vV88(g5DHj~ z+5m4Iey-sqbOdaeNIN5uTl77tWUZQ4jgj~A)DP@etajmhmt?7Ql}U2e~TCAOwZ zP-f0!ti|~jsB(cG_wcys*^^y*Tcm}wj5iQUS`q5nQ6;-fD4TW z53`GA@mXc1E+zG);DO~Wz(}({ZZfvSrCg0o#<%vjOqUwCXeK7sPfa*&1`lRuSMzf| zr{8O9ne+2hm|!<;UYMwl*9{E#lgSnId^PcIfqzc~DEVI`35+ehFrO)r%o9;6C6y>3 z^`__N*XZdP&2zLOFYc*vQxO$v?5a3X3;+B*-(4v-SN|BR;nrkF@&gFu8y=@i!OCXK4+FLZeI38BKvPgOtJVfcOfJ)PKTvyj@xvCL`m`&ttc|yITxY zFn`9YE3#L)c&0t4Eft?qhHalDx<4zQN;I$@E5w=Yp{73a8W2YQ#h<6m(}2w~6_wCG zE~Mq9)=7+VSJL-e>tacuEn%`Wt#$DooS)Jy>GrU}JG&5eA33vbwOY)Tt>@`{wmY*O zlMpJH;18ZpjGP&0SLX>YmflbN9_{g z2E13{wOoi6(89Kc>Weszf-6hAZd2J66dRMD%uy}tK`xru+KlNlwM2Q0kM_}{l=$8U zJvAqx|FHH{l;{23-Gks?gHlVEvBe~2&m`9?^0UY2Or9YHMe)-?vVTQdioKp>W^^7G zRFVL)#S5n2z%Ns-;D@z3yfPXac@JjFQif1NiC`IZ^VpsQqg< z&aSp4%?oTYYo>AX;RiZ@mgsy z&R5jO;0lWMXjg<$zRxZ+ayxJ=z^7pr^d1P|3hL|ofg zZV4?e&XR0G?(z;JGct~Hp+I}m?AOc-tj2&H-S>Ri;1;Bz@#TY)&&(iCj+>@tn?brZ zQbNM}0qym2cXuqPg%h-zFD?cL``p9Ksx=w_&1P*;|FtILP3=vWC>VEuREU8`0pODv z8MA;%vVA{SbbXC=agn~Zc_E`e+YI!#484trk8tVEy4Jd3z%Y#-XV;6+>|mNF!zYdZ z4$cITwF?0h9e^<0)9#Lvk?rXwF;zbf%bhCmfCAuKWQ|Kx(n|nuEbozPVLG7B@AfZq zMVbfHA;01~U3tXQmoa4nFY80GQazJr5ivuTOI|+>FE}H&kS;F8NAsRE9&Q^pUHT_U zWS-OFGgMQbB&!F#n|W$`Ukxh$OaKEo><^5o;F(XFoOLcE-vZ=Ueli*O@+eW8$Nm!E0NI3TH_+Z;w?6;Q(E zrcbOVj-V*R#lJ2DcPyYS0F}72eguAwf2opnfJZy{)pM10KO8Oew@Fjzo|*IBc!B8 zjO_R6AftT8R5>zqq$HF3XZH3gBYyh3I(BgP<0vmLXsU7Q;hv}3H zB;tBvIXdlZZJg%-{s@XZ03`_Mpv}gS9OAKH5CDBivt;AJD0HAj0oHML)|Z#(wfwqv zed_&cM7Zt~KFnUvv)$dwZ_`6w-ZzGxo;Qq5cx8=~AK?g~*Z;mqf5)&gP^%E&*(yEu zGe3+9lC>a>J<}@xm+3KTZg!A94Rg7+DCCy>3heQ?%BObcg9jt z_Rig$-)_*b*m(3;UZ4+lB){gK;PxQBocqasDyut{YFIygZSwBmk7pr0f?&H+xTfoT z4iRBCEO8+;r{mLO78CjydCYhYyDCLVC;o0A#m8IY{ z_4S&)orl|oJB7P1uSTLh18iZn4#Yty4mOS;78 zO0MY`t|)N>>8x3AI$l_dJZV9#B7#`G+5x)x(ET&P&Qq}x_xwDrZy1EL-(lDc+(5ZVcQ z`>mwUp7rxZ{JWCtIy3$DX8<@2-WnMlW#+f#6ny=kdjJg(SA$drea>%B^k{86V(PiI z%NCWD{)ipxADiPsVyECC5Rws=lB$Zkm1BHmoe#tgbrsXj2Y}kP)k{b);x5q2)Atxn z9VAOjllcqBsCMOer7MupqN9t2ner)s`4$I(9s3YF{bz#bivUalZ0<+Y;8f?n_wixF zi?2f8zAu)HQd*a`C-(P%1_*GcJfxK29nyxmzcpU$aA7S6(!Z!ZTdgyBKO-(~fY*q| zcgT9R#f6H+6Gi#*54`8$VrH|XxfcF`tbGp`sV@|LZFZETH>N%B*x)-jFakz^C)Q`) zK>M&ksEZR};(Ho;4pe8~K;B*t;v_38kH%#vvz;vC;q(Z(<4VzrE|(kH1J8P{lkHN) zGPDueI6co_q8wbl%C26FhZma^8y<3|7F61#L#4bA;B&pnbDq}yz;i0>F* zFE^l?a z?wq_cY20K|Z9H`t`SVeYf%bhJ>^9`g%!;-3b7xaNiKy0fmb+CWf&%v)IS@;8pQqIy zYpz7)bG;P;g?y&e9LL^g4mH||tN20DcMy?!cPfDXU6Mf2E)#+O_4-*S78o`zH^RX}Y26Meu;YSyD)=K-UXx^a|rAai+7Pv^P@aG@@9yC2wcZg0uFkqGuBLT3Zo?7QtBLXOwWPES*&5+C6zp-_rR-{M(*Z*x-4r zS1P@LMPniV1rbzSm6(kwk(W8e^~ende_Yi;IR{2*Yc zasxV@axs+g+R07m;i5lAr%jcAx5B@m6{IvRDkL$qTCX^0Gkew}#eJ~!^~RqaYWVW; zz{He{6J)kN|EegpQ^+|1gwm$*&D3|DCWo&RG6h5K;D(p@2zPETnLlRwy8VWHx$I8a zdbfj1!CmtlMYrBCt`~38LyN8+ z!~QAp_br^0%)smFj07M z9(N4T5w&7}fCH3ju0@0lyhQWREgeDwOT8W?qA?rqHf{%``w6q94*Vbs}d!*dNp zlWF%=LLdn99aLH%BfSKHIviyR1Of)8fJC9-BIM_om^Fkg<@MpupIWH~T>te@oL`M2 zRNOG77%G&lrzC>QEJ@?^g}mLfwz4V&WPNUK?TtpqNW`|CyNUev&-x_f($77n)Nd(Pij27j)2-MJ*8Ie8d?B zuUbm3a0|BCZN-N1qUE3}sRb)%l~b`Zi>_8pL4Tn~Bgn6n<9g+Myw{Bu@snXZBb??`GUAEIXvGMAPC+n+M;ymrU zK;C>^5h2r%qn#Jsov1|G?L{{{GBOlf6>u~+q_UD-3UkT3&%xg&*)zt`3X$v ze>r*)7It>*e_W8VXgL%e5Ow`IYHknzs7=FaO=dDI(8g3jl+;?Re}P+HeW^m!sb)Xi ztv8cOR30kygs1569Qy!EAq1iUd84VhzBM{*EoQHLGBg0IcV4@pe1F>Kw5Weuei+tu zTp9oM>#1}DO%mIe*P^qvJ~HR`M$y#dm&)4C7tnnUChtzCHPTyY;;R42<+|lz@#gL| zl$-rZ>_x?*C@w0hg>drs<`F1~Y^+we+uPg4e{r6>M%t`VMaN;*xdywKOx&z0H%Phq z%yiKZUJbaMOj*qKKYK=Xn@(?cg0^ZyV`!FKxb(|suORzPFS>f;)@X9es=@zGl;_y| zWNx0`g%$21HjCW9eY5wL>1s~b*o`5uGx)V48M7YKH9v@0yfr;-Hnid=6Jg`#{XjlB zjdsBxIYkB@Fh!e0Z>}7*W0UOAcc#k!uU-FNEKf0exXrK;%g)XFruM~A#nUD^mG85( zq1Bk#T@u1wz%T?v=K_D1&`l$+f)=5@ru7&dLg>Gj#4w8^!Iov6ebDvbtw1p=$TeHb zGpjmxau$S*pnh=m3~xsu+lZ3WookkX1hODlsE(S3z6aVIZ##?aGpW!T;YJnhmm2oF zV#=7k*vIXvQbIdFcORgdUJN`uyh#wMa4oK;MuzV!M6BIpVKPuY<&p`fc=9%*9@}Ab z9www&(Z@{fr+N z$`y8&bRy8)zqXNgK?_B_e1ms&?mE&RLY*oL_@R$=f~<&R=rRDL^%gj1@@Gp5TiT|E9Ze$UjOjHI^Up>~C= z%~m}`&-s``G=wBaN{^Z2c0jGrz$BaG|CaOxq4&?n2uq7Xjy>4!`L?p=`dh5=A_Zm+ zcVDk@%JBMNuURUiUPxkD|B6zu*9}*9O3J~t>Ua~~9f2&gu1cg-j7hBpUSMOS?f2<^ zqn&3Pa5rB8;(jMfJBE99pZN3cR_Qijcm5B#Q`Nc!#?64?%w>!3KIG?U0}e)!^Sp90 zMi!B_O1<|%qMp$DZ;3||)oL(TldESyfXvb==IViLA6U>mSr6aZ!uNO(w6Vf1R={oC zv8mnvqTz3O3OC3@&ip=I-7c(#4$mG-U0A_!hhbR96}~PPYijmB<+|dmEd!6)T|R1a ze!o5EL!Zvk*?W&~a#CkIO5{Sbon`)*X?_qLpl;2Y-%f$`G5i$8yYjaaA6*m~K2)W)ifTKK zX2NZ9{2(;^Y5pDxNfx-D53O5=F$?Wa7NOZ09Tiy1#bw;PrDIX{97gzF9X~}%UbH*p zqvLHwQkqj9wec1Xo73#27~Y?jQ@jl0;aA&VVoD@?2B*j>H>DarA2mwBnxeDBLl{Jh;qN-fXEvc4*i1L1XYJ{nw;zozDjLf|H3p*5wS)e3PfBH3!cRu=Tmx z^3LwvL12q5;w^ZN9|yvlP0y}Yt*R|YXZKw%D%O>56^eRvQtbiFGgzheaNPvw>j-8a z%S@bXTeB11*4g&tQxc@+do2syMCC5*O3)GrOF^tM2bOv_h7}KPdVCE%cnm_S9_KFJg?~3;kS_^3}+Zle@IXE3wJ2 zpT>jb=uLO(FyHGg(>gEo-^&+Cj!{yS4*7)Li`_etD%f!~s~1gO9#6t2C9E;@>8?R@ zghZRJmo}mQqLF2nz-;MyFxLL59cQ1eVrj7aI zuX{!B+u;}99#J?RoquzUCI2%gwG5^_{6j-SQF+)=l*0E-&pW!frsU~ZCh1>>*bN`b z?$FF3qQ8z*#5A#{6@B=gg_|zScIh;+9p$vdDe`vz{^k>*%0lKSrI;pn^3@clEk=&7 z%4kmW!S*mo$pC?dbw%wklhEkPsy=yVc$@sH%g1*#@9U3JHC4x$R*fizO8uPb0&zjC zwx2}7(AH3ri$A^V$>)=?oQ-C$-@8GD{mmBzN7d<7SI4|p73)Q*T%w-fL$m$!p@Sca zmrK3gWRJJErIitlZxr+sWBp^12Tyr&Fu|cXNmAe?(Mbz5L?HEOwKW^>HXf!Qt zWi646n(gH(i53G(&%az!g~MT~s5*h8$@815VpL?RD9&-lR1? zY3titmBYTP;_x%5fck?}n==!}C$^k5uCWiFjI#$82vjx2NH&=I1l#$e!rM&+`u2TL6Q_=Jz-7Zt{ZRuk66F7Y7R{tM&FLa!7gPs@&1b_feW+Qj zt^H=W_7qIP8~z)}LdryeNh0^(J#`Bm<7lZ}_5HU9`TAU<^5sg^8ky91)fJDiT$(+y zu8~46&9bSt@6g8i^<{nP$0S>AgpQS$n6|{*@#9ycG1ya-2Y;M-6p6dbx&{>%EmzHz ze7lvGe_Uu$?D<)YiJfKoK8?+YGyUBbX6sDm)+qv;$)Z7iRmTsP!NA1z@A3l2=%+Py z#=mn~W9goo38*Fp>PEQ8-GMuoC?*j>s*`Y}NWNijq_E|#rJ&3If3_HHyo^Zh z_7xwH!fg$d5nd7i@_KAZ{@|xfXZ8(|_v5VN#D~lULd!pK_KNcJ-Ot`ADyz*8B!rSH z#&Jio3XsHj^FO*7?IwCv!Y~uT>dWK)9mh#BUNjNvT9H?+Hm){2asJAfAS+3F!rHzR z&)C6=K>bK0$q-`?Q@jBW6PVq31FI?eG((7iFNM8cFGb$fjn5owhpoJ6X{Mmh_oSR# zk=n%Qqj#(hYAh6zkU5X>|5U#bBVDi7ke9v3_#K~vbk4H$wk>G|Bm1g#*IQkmzF|Q^ ztU1${)IKG~CmA(`5j70-rGY5F-u2d3KpxI!wV5|oSqjeb-x#BoogHhks0GfcoMAg` z4r7&q-2KmxmUFY$(;|y_aXlvX@aduA5#jAKpJ86a?N5o*Rob4h6-bvhtzD1Gl3$1L zl4TMCZ-UQ_gUGvw=C%a}yITKGd4qj5I*7eUt0q=AE^+esX z!R>AjSM{m`TnzANXR9{2Y46%JnU^AXHynWyYt5xv2)V{}GTe-#xrRlpwY(nJjdgt%SC`NZ{!T8>ywC5`pmW@Z)6cLh?glm)a>8N8noZ} zlCDf`9MF+MHE%0u1eJgCy{6=I5Zp$wW3pe;}1?@OPdi72o1(hcr{@4b-WK3X?<8 z+NnmWo0^)UcH4{mn!WWdTgU?lyxyJ;@l~(44&r=kxzZ<@DX%>Jl1H04%4-AVzwhD& zf}iB%a6E8)yIpteNSqfG)PBZ2mgmx|ONuLfsL819VA+dN5m3YSNV1`%${UrRo%WN1 zn|F9L+B5UVbeu>$qv%SMx~;6tqTleZZ_l4TCZPhGLZvBxV<6TuXy(OCNYSQ8MhCWt z8hcTu-NI|jn_!{Q_f)}74QJM^57gzJMw?*n!B-~&|9H^$yTU!UCT*Feu`2r518 zr*U#)&rSJg*xqbE@}Q4usp}PCMWnq5Y^q$H0q%;2?)1Pr?3IGW{ciE@{qNAwKUWfS7U3u!x`Z>ji^vY*|#1LXWS=-IBsDxCs5B< zs;=d?DJ#b~K6_lHr=(5%(E6uu@>mU?3}+T02Wjb)o?G5I?Y&O z>6mCo0&BWL(aO8X?N=SDruA9hcIgG&wn<=eT4dN|?`fcRpJx}plVX8L#CC0)_U{|P zRJ&^Ss5XlD|0<8(sKd*WFq=+ZT#>Awn>2f@kb7T`E8Wn$yUh{YoVQNB?pbGI%WX=> z$ioE5v-)0V%$qD=nUz}Ex;!_uN_SRvGQ%e!C)Az{x7%*siL4RlM9_{(f#mG7dv|jszSfEa1-&l#8q6v2MoK3XZck0}%(|HC zot}`jHnGIaq;FOd&G@9l-4s5qZZeWMn#>e@$s{)6M`U_&Y-!9XFV&Hm+wyFPCDuZQ zZo;%K3U|`bnu2`Oj$6S~@oAptV3~k}0L_PhOCI|j_%XBh|D0Mo|U(lA*i3a4=wo~ z7ZEjk5G?(X~rq4M%tD@1<$u4lNz~}UVKzE6WeYkRk^;+5q zIZ*ZdqHDite=UWg}Zq~}Yzxt;GV0;e!c4RP~b#gyf?lMNl1oI1>p z7Ak~nXhV7q8v9AG6xWxoe=*U4_0L`p^x$xReV4&@wGfuE+$fOhnAjwpt3t%WvIk` z&uIkBRJ)C{bsISaa*kgRvQ696)@K|FM4Ady?mhgs3<1-td4uNoxZ#RAXR?dcV`GBZ zbVaXji6E{Dp_MmlGLMO=U!Ps2KTFKNL5UCZp>Y{Q`$&!QkxI^@=-fkoL;{9EeHsKCb�!nt&oYpTpw&9 z80-=MbLv>{b}GW00uA5wCKn@3qd%9nEtTQ+9j=mv{7y_Jq}0UZ-ovWjqoGbJ->7OcV2oYZ1S^+49)`H9V17t#Tm*~ho1Z% zQBtJXY^k!Hv?$kk%?DElzm9C8{~7cb%F?WIh4kN=LmX9c0-+1f!#&K9+eZQVXl~W6 z($dlf1`9ZFr7K&DNrEv*ot&7?tj#(Yjt```q!nAddj0NJFr*?qK3-j0JAZt$ zk!lAMMh-QvFp?=~amo=H_OOQMe%dsr_FHI6YKy5ShZY5r0M3~2m6;XlB>@luUN7ZQ zuQmkb;)|N*c5wzp%Xpo&Zqia6==fC`po|qm{L^rbb5YG&|CN##a6vfHyk`wy01W^G+gFj^nM*sDGfLh&$9hqT~Oa7-9`Q zpMsCJ9j3+$>|O6}>SMJ!CC(8}9JPXsm&7segJkXIJv>>`q}u~R1X|aN+Z@a$S?kMp zW1+Xcv5GCwq-ArMZyJNyp;o>p=kX86Z}#S(j)iVxcsx&4Ko$ErT>2r+p`wzKnCH0z z_)fgHddNNBAbE5zU(7IXZjf2!)O{eXPI>TlD|h;$wKL=N)WwvzKokP022*(hCivK^ zwH^2NzX6s46TnHCM5QpH0n>67G6dedf1N3+iT$bo%p7=N2lIPdkPSJFcJ20 zd~Tv&DEZpiku<&ON;y-q!NhC|-h6|uWrzF`_WtA;u6|cZW>^z;IC5Ml8`+?bwc|N?p0_EQ3?_^#_@H}Aq_pl&#tLQABKqno$MzfJ;Ybo=w z=ZVQEF6xxgcT=MQ1p}b$#omsL;Y61ME9*_C=d6z(D=H|^psJBvya&kPF8H8Ze)Rui z>#O6U{GM<{x*McXx6BQSdltXHy7&6= z5C2%-J$v3cb7r1-=9z*c1KE2bC~w#7@q>3~7j*PJ*8}SEc4vvJJhtDmojH9!K1+T} zUTuc~csmE4D*eEL!i)OwakoFp5guWW6*f?Pr1wKt?D;)Gi#~o<50Beb~iHodrBZ~2IYg~iLyUjt?-^ISk@m5;|t zdgLyoYyk}^=}tjOYE7UjGX|ZjCrt>DqJy@;*#hGEhJ#=pLG}_iH@AR~HhaqX?NvSB zl6U1=FwGm?+Uh2Sb{u{XXK3hkmAiw-*;>l5gTS%^1RwdYBKR5* zb-cR?9iCRRgp_Z387XEe_Flpo+b?dR%(s^-Nr>nC^4RZH!N?T2B7nv@HLg8hA(&$A z9rLccZzs(t!0aLPkFNACkCd#Yz}H|`I;f%Qo5T}$ueWdCN+1Xzet5&{>LX}*B(D?J zacIYp)qZX_jBI1me(T*kD#q>tP!Ex}KS8C|aDP7Fb51OnCUfwi$~`1TyK((y4K6wG z&w26n?ICA{22tnJbi4#J0LB|Cto0~>DfyNf;qBigetlJZ0s;TJvZEPiL_aJ>%11x@ z`Q+`*sjGs%+d~7*Pvcze4^m~%7R&2Q&zEREE*8~q&!q68{~g)2|GGl17(f!4(@Flj}&5K9Lqi#;4&Qhiw)!`J|DBB7$GAyjDa7S8-N)~W`#}f)~jsNGE zh)E7_1|EWoUc@*|E8CdR6`-#sY;mO)5AGtgMcXjsye*3a=a`rwSD^ zTAXZ1GH!2gp%oVwsU`bm9375&${7k55imsgZo|3kh50DQRqT0WWMn=*zU8CZbk#_p zi43OpEQ9JoKq5m4Z<#yPnYKVoZQC7nU_HGRf-1P8UBuY*yo2he~X}!UK)t9h7PZE4>Gt2dGMOUDIwyW#sQHP{)_!%ECuD$B?N^PRZRV z6K9j2{t`Lz-ioY~G9R!7Z~X@A8`3T>FR!nMg_#)xBjYP6sQ_t2uAPuJhqs&4(2BFE z)bT7&r32~wpJe-mauG_jjErlY)$s@M+5(s*wE0&!pNuTgysJNC~ zr_`!&C}=iZ;GQGH`~9Jzp};_-80#_n$6ErfQqZ$^Hy`#BbT7Pbx)T?(7nXm3*J|VP zv7>d}6#M}yKeDnI^?P8h)CV}XN*y0wt4$7e9MR2kACFdfDaV6JC2>WTt~(4=SZ;cN zBt>`*-=&JRR%5AO5|{_G*6aov^6v0%FrgRTdk`Dq8mDP;Ps83(KaGusNV3c5_6d}Wxu~0?C4Ssx9ZD$$D&jzMf z0PdvNXE(a9b-q2ab?TR!()Cx{@4)D-e+BTMqiu-m6{OMgCx!CTdDI|MFpj=AaZ}^q z@%M95%4fHpAQt$-2~oOS9hNUISpH=V=7eDcWv+ZIRTMn8{Oa^Oc?|`Y9nVFCfG>07l*G%1do{QHilWdfNY5UoXtdOBeML3Okq^DI!K# zz!OkAyt@X5faC~hCp29O~oBqj0l@`__A zQClBI-nAdV8Fmo>_P|zHBcm3xY_>`Mz292ya@gSS#`V+^`Otgk9{#@9Ysf>9hK{4n zZYq!XVZnP9ob|)IJN~b=K*>-NGrqJ7x$cLx*%iTst1EC<^!2@B zM(ktQx3wnloMeB*1-$+fFq7;?K|=mA+#vO)rQ35|A=XXIyOSW(=8Asg{%YGr-pL!k z&0u1`t#G32K1myAD`%YDD2hRdfOvnKL}6EHR|N={!r{e`Kb@Tt z%@V!aTU*-N+8f4;v|CElCvIRmN+j)s|LX2^4{`lc?fhBcy$J)CPa4z$`wINmUZC2} zCdu&|J6+)j+!{YxP6fWCc=+Jk&!$-B>|wJ!?tVQdnZVdqgIv)+lb8b6U;&Kmc~sDX z>E-^@A6dX#yWfR)b+QKec~ZtI&t`$WAK_u8W|N3qr_uPt1U%vZZO=g6uJ(MZxY3Lw zQr{5NPeAuAeQoMs$bJvSy%PB|QcZNNqvVD_d*p``ZP$&XQ!>nd&drz&8Kg z>%rKF)A>fS{TaI!i)ikan28-9h%=50)&O)bNOUjEi3jpUti-F z;UW*3*OD-G^8ZwjxTHr`<)4<#|Db*LOxOGnWgkAjp3Hd~(~}+w#@JyfR4{_pX8Qtm zjB@XcUD}Bi*Hvt#wAYMy9NGjD_kgcW0U|nL439dlr?{{h-}2me zHF6h*)$XZ&3=($L-di$ZDRo^Cx_OuW8==}wpy5HL@V8KyFq5z$Dbe+{G+Rp}D^P2? zi{I`h7L+3CkyzT=Mj-Rr6uEp+eEBMs3LFLM=62Ur@<#UPju^0<*dLSfOQ&D2P^Ji< ztOy^H+`qu~)lx-&S!&PNA+JpmKS^G3SKDT-4Xd`K;B!BPkI0)4x5B zH4D}_|Fm55^;dzH4rJ)O)TOD9eN8DOfLzbt_xtr{@Uei;NGPnMJ7S&? z8zHpMl`g_(*63zl;pj+WZTiblWv~`)8@}Cnzmc7C^?H;xtT6Q<6|I$GO-dLnZH4MK ztL?})I#-aQ@pdU0=??<}!SjLSn3zB)BE6s|k~H(fKwrchSRmeW)On;3zX!SwU5j7a zN)2a|!fj>LlYe;Bw!F74+}>)tS;|P6Pg|UiS14><6yEgm4w%jGvN&zi$*=Pu z{T|n1ikacMDTr{&sgGwz!bN3Fg7q*}R8?`QpP~8pJEoFDoG{e4*uUZ|C0-QMYd`8$ zU@TqWMtWDZt1Ab)`1P4~^*5i5opagYq07#XD|6Bu>Mv38+HN-dA3wGHpkXxVQpXc8 zMC}|28tTufB34vZ1!hVKx7Fw5#}_j#-#S?fDJV2gd7`(1k}d_d?R83hOg#o|jDiH( zpFo%YsyZpWD z5%2kaslY!2_!Lx@yB`;KNZ!9db`YwTk^F;8Uoc;^_M|bf9OFPuMXWxp@+b^%BM|go zZ*yvFnr9h5c+q*gOC{|=>i;6WLC&NwP`{FklhZs{mKbv4Vd0QhnUm{VPD^;`ZMwK^ z6o=Tx20I}xhE)?Qf+8e*`V|=cbe2!0IflSz!RVoyW>IN%(@}ph^Qb>9Mq~ClmwOhg z8Q&u|V|Jfe^XtdYL5WK#$0ldG&5SU#4WF?IHW&ZLtw#z#(&TYIwA{lzI-hf0+>nXy zQ*MuNvbk5AzC`;qrJGaKs+-^HRU>#tV}m+)?B&A7qi1u+q-MmY1$)#6O}Oju#37Jit(DlWKgzXtmD@FSBSaCFyXeSkbz z@EqJ)d#c0W;~p}^b9E!P^4axmfXOqbZ()`a5HSY=`{iB{euw=ZD*Y(9KJFH58v;5~ zp6KcKMrY$Xcq{xeQi_4pk~>oV=8ElQ#D{^MDjPqT9Up0g8e@7KYnSHvu8J6OLm1=G zujHJu>ic0WgK8~{Otvk~!{|5EPAgGP9y+9p2Ob(jJv?8t*R~?9sS}iBu$8VQs4Sj@ zO@ylP6Scc}s_VaH*MR}mj~+M$HwGQ(U1IT?m$_wC{8&1EIZ>%Dz!4oA0!u~@^621g zZ_+Rl|MUBMk`#y`*q$|9-#pxo7uFUNq<^;~tB2{e)mo>%cMvj-ujq@Np-<^B2ga5E z$hEgLHS_dx(B>1~Az#Vp`az_oUX+)K!OuFsGxMskg~+}kWq#|yqhY_#dya{FFq!z3 zIrNFRdAg5wXPjEJ9j?8vpGp2^gOZOFJdS_I7Y$>Q5!fBf8dQIFzn9{W@XqeVA=`;n zV91&F1QZG#8|x%kg=^o;jy}dQ-?qQ{e3)FCIzFh0{o5co@Zpqbh?3jmv@qDE>}nh5 z$e$jZ`EZY4q}@wUd&EQ0xPa&nmz3!WLxj>d2z_-a3a_iwkQeFgth0LM{0(c2PX?Lj z_1U#@4n&x(%i#---%u@bEvrrLoZ4v_o|^%h3mFDL5m4-Bqy~hqYwW4R+EoJ28Uv}i zKn_r*%cFze6mGS#U zV`#|<1s4Y>6LfcXvp?(^HSCumhFnItjvCHq#%Z8Pjjb>hl)HZYpxyPkC4n@0R7fwY zcZvxYm@(5|Gj^M1>1t=HLwRC~{*ISl_D27i)4juXBeS0YI%&ojCrp?p)p;NUf;3G# zz)-piWBUSENti>QbBoKc@_V|?T&;6V33SxZCqFogQ!$>2XAKcZICyO$TP(p|s;Hg$ z9_Wu8BD3V5SPaRv8(Z;TzS98N*2&}dIM15u-R#`Zg?F^^@bOp5yMEwRB4+iak`L_m zxA%ny2>H7O2sFG;taUckok58CqkqMagG^JCH~`|ZGdM-+$wOM`LF7KxW!xBf?=jd) zpZ8^(Es5A2XP*z()Z`n>>~8qTpjW5P9Ih4i&4Z$a0#s(ZH?$LoX+u79?60@4$4D@n z1jK4#1`V^+48N;)ZNu!VpH&AWsxcjgHIl#KtEh2NAcFU}H)Lk7!3ZIRzat`gfXYYuD`zh*56b?Y90=lGwuz^LBW*S)F3 z=JIihva+lk9A+|ZVZ-Kw0|Q1PC2|rH2y$PL?|#eyMXNUYsYniA*d`zE(AWpaQj}#T zm32E$!Ouo+st)1Vcd&txB`UjCue3w>ZKcPhd)#i3dkE!{{_zo7GJDQ((5 z#m@&HC?=u^X3XS0JVzzCd7Pp7`ZZRFtCSS#Ao?LwAos8uYZaTvjR#(sD7uupJrMfR>F}%Yr%Bc&>ETo5aS-o;!|B!n;)fgSE+1V#KPQ=J0 z3BeRWXg~OQ+@6DfN?1t(mZ&_o;5>p_+*t9=JXnto!jth}6)`M49N;*!@BWDB(@f&` z&QpOB5^|UT*r2;5b=vPdVGy@lA1)0cR{%g^Gw*6)Gg0>4i1St$=DsgxUXY{5#I-sCX7`Pu! z_6TaYSlRe^TYtJBd*K;sYacZqT5NPf1Y^CRuKV|QDo?!FxQ0pz3LPBLh1l?q6_Q&M7Cy!@B10SHdHn^?`>N!1~vt^MRSG`u6P zi1TB4E9(EQqm_5;)5BE`(MhVs?)Lir!Ve+Muy_tSVvbjH0~Y-stEZsK1p7=4X*6@j zTEukC586c)ny}hg5cYXA0;mSmpdtt^G(`4l15@?xUN7=x{Blz-c>od&M)B+@75lrQ zYJi#pjmtgVTA}NQ4*M+y7!7+U|7|9`e0;=g_?cPtg2FH7YdDz_&FJzgDx%E9yh5$5 z@~7Iy`r0cOAGT{)-v1q+Bsw<=9G!;%`4WZ&HK&UH^mEi_OKDp(lQRo{e&HBF_jfQL zqq^Ad8x}#mj~NVV3=2)SNb#*u&q!V^XbI z{89BRi$?m^QPZwTwZtrPIw>AY^@CTf*r!kXzFtA!r*aET%+Ls=(9j}-8RUW-xNjRg zsq+uS1y||*6~l7zQvfz;yG2(vk8>=rluqBG1=xLtcg<~0SP&Do0= zAeaJq8k}Vx!*YLBuPE@fZ$0bf(G#ubloR?8IqlbPGP_%5VD%BpaWEIswwKAluP$tK zYI}{z%~!84n<|8-8+|>NkT2SlwK_f^lG1y|pI7e|{Mqyo^P}-w6|s`O@e33S5daja zOAbKckByDp5j>~Xi@zCvNd|k%Y2GUJ#z-Zg^!JZGe-ED|$5LTfdhY)$DWmdkNk&gM z*&pJZWen7073|n-X8&0j5;d!E3QBmu&UH5Lfd91^i9Ch?W^*uy&S61=pSe}RPRG+_-Gkz!MW6JuUNbGX-ghvvNJ=e;n;#IQjf4AddfW;HF3z_Ee+6aDRK+{RY!?Z%*oe3 zVTQM#NQPT6;66F2hdNkDej26$kr!S2vK(%MI^56 zlkxERUOtY|J(3E)Q89WSBFaOSRrIPH)!pz|V4vRwcx#@tiwc&fQn_$|S!Xz4sPo2# z;nRoSD8dRQ*(UmJu=teCo1%_54!G9kkU$=GEhlGaZvX(C7av>&j z;jkwGk2B8)Pq$Si>8`W#uSj~*p!)4k_bcZy^%2m6Q}eAlNcW$TqHh!QP++{T=LZbI z`U|Osi74c6TiVnM>^=R7XA~Kbu9zQDMXN^{XXjP=YW4C60c0P($Pw?a%>ox2jXD?X&YNv@c|dROR}4Yhv~j6PXg_2H1plqCReEIYk9#a>j!JI)VKi>(t`gQvl0Qq&-J{kQ(j^ zW@LvoE#*`-g&OtVew(5)W1|E%&>eTz zBZO|bOqZVj!eOoWHm}!4Cn=w)$~Nzfnp*WvA&bs#V``Qi$6Pv0!=2};rwy0_95mV|SnOV6nR>F6v>*ukq6g7O zZmqb&_f%<%9|_hicSGhh8}>{Nqu6g(dw|GDe$n0N&b43>>W)SO6b9O+%z3vrvz*e=IonH9q-mFX|CNA4evaw9X?4bV+ zGfFVgFmZ1hNy*axnhaJ)Px{kLypHQL<+pN{$LL9s307Rt&d($(-1f{Kd6^IOuhsJ$ zW3*tB^10I$b`Y1B-Og+j;vGJR$P@cd=TpUmN)*}6T{G!Y4)f>KXaM=6^ts4mC%A zH-vOpVaYun4pkB_Tr_fc^8hV_e|CEO-J=dN**AVlpFe)Kw=~Y6^L}odV`xh1oemY? z{Sx(A8?>=XNjObE1^SaMtZBfZ!EJ#|sFX?gO?&@#02n0N8W7z>aj;pwhFyS>;yBSd z4C4C!D*9*0fN60*H7F>Eh{5!JncA!)uRlW%f&n-CrPXjnl7jVjMT-7arWPe+$D7m? zE!Z|kKqLps6y|FGa?x6*_#fQI4no|flz(f(vpIhNi7+)rc}ZgF)TFt7N7@ZND@?$$ z;dL`0uK(wdi$mfQW6-PAk$ch@dbpiLrxl6Gi{&J>45@6?Teut?-ZW9^VO{DBI=l^k zEFrLZ3*?LL4~TV+=|VuD+0}Na?sOZ7WnBR+T02%q<5@3UE?;9ky2Da>cOJXpg0F15 zP1mr)_^)3`j%R=RF76R<*53-cQNb0%^ULWvI)F?}(|c!aLsq#Y2VzTLj)}QV@U5kx z8pa+auLR}8QqOiq#SxAxg?QZG5oLy!#Fg8ed<&6PML^X!(s|Rqiv8l(21aV@%w8cV zQ(smgE~|O6LK)--Y-RrUyZ4dqHWxii5TxkLU{vC)qCt`Kgrl0}NC2M~#85a{O6L{0 z@eXi~I-gJH`8fG(j<6#NGpWMU!w}|%A$Q@;E97E;guor^=jrY6@HU@^?giE!%K=IDI8B1g`@v}^`N-zADZg`&;Ay_JmzP%=0nN_r zO@DosjZWs3<4NeJ2Ove-oG1jI2LI)@`8*mj$66i<8%G%ix+b`|um{9q4p0xHLP9#b zeq50N{@|qBhrI1~MPqyh$1-!+Y>u;g_-bflT|aaY?yD;)#qf|l(TmB*7=E;XD9X-` zu2?;58!s;k3L5!rW;FvE8XC3q1>*1Cac_@^KoXxx^9^?X%`$1B+?od;dl?Et z;d%M_)q@2pfLW^*NP{>xFrN72q~m^(xUw?7oW{4nMDgx&+9)R+br2RgmCfRK}tL|3|a{9C4O zk4)Og`RD9@R%#n#Rz}htI`}{cm3l$@nSkyfh4V6uafV6`?Jfbt+{f7p`Fl(2GtlG@W{{<3JAZ zDw8S@)Pkg^%&kGF$K#iaxu;~7(b{B}u87_aMwPDH(=yCmKsj0-2L*0+4%pY> z;gfhd7+BNKCFAASfLZ}gzRf;x?O!9F$Ealqm1HlD+J7^%5e=9Tfjy71tJx>i&k??K z<+1$}BZm65m1O+Kjv^w4u~z{hYd=PYcRzW_9@7Xm@KUQK>YxD zSa01k#(lfQ)@7#t-bm5%vp9ypGqNrumm<&TX;kMIhc3Y>j8H=T-_)pW`lIgO(KL?i zn*$UIP1-Dxin!#={&Y?wZTA8;Yb@DE0b6U`No5WrE){tqKaCCJa3q0l#^?ha;o?S} z{jf?EmAU4tb@7l`#@$!n2$^=KwqNz3O7X$q#=e4^o9gQ9OeN|m_zAcec|th_g#tbx zi~WF_I*45G?Pop^Zut|k6mgSBuB@ym5t5Lo8yMj79XR$>fMRN3RG!}V)bVi@ZA88A zEIlip+EZ%w_LWW=4mVOZpbT#*58P6@Uqv?hq`1Zy`ebKE6&7C==8SB2PwX#RGHpb! zaq=0=a=+{G3R=QB;$LeE#E^%18M$n3`E^12VL0RlIy!7FFYR}NVM#giXW& zbLGKkcEB%k#?NdFCsJdyjvW(kV6~#-U)@g6wZxWyQgAor8kZ^kw%oJ?v_~Q7a^a=#@MPpZP(OhRqYaLYd$#@)u0=BP^7(xCL_V^zuo!K3bv=FhRH@q)DDJVn?{RiMSeBSm zQ&Ax(N5{r4FDda)1#~oR#IcI4tt~^ga{Sh?kdSP?DlnM4V#71eQ{!$UtJy+=$)y8C z7jQ!Ky7Vn0XNXOo+uU2PSjP4vZwH(BTuN8tz^>EdJ|94G>QH=P*w)J;rrWw2tF25f z`HcUGE^2uzR=Pt}fICCIdU1Zl1N}M#)X!6t(MDMK9)=n{zA{Y)`7@-cuL+|}3 zO4|MjO$ajWzp~mJ22)AYF+P&g7+dJ|7W#Ko0xk}*yY)){lJzBJ_f5ssS?2$$p8u60 za!-7Ur$Yvs#>-a7ry)$z66==MDR_9rDD$Z-l1>>H@6sQ+nzUVNAbdUGjNNoFJ@^Z` z9(^TLpG}L-Bj)CNpdG$@jq7$1F|2R*O-P-6Mh^{F6MtGDgNg-i+`gXe_6%9^+RdW? zCDCwp*y_fYJpjg1JNR0(WxT(+zhcege})LnkT+7E+X1Y%cp5T*T0ubabce_DVCWYi z1v)=9ZOsOX^}YFf*z_EM&gAxF)tQLts+_EirFkr5(iT|<-> zeiVv^9ccKJe#ojH4WZWqeoF!Dxu^2K!XjMeRpFr5CMSx~iRnD*?jti+%ofp!86xVO z3D8ug$l;eeF|V=zvt}^@J?W^|e(BhWDMR`N2=-p2D;oMH?m)ksfX&OwDgD(1cWY0(ABhrMI{Gvt!DEOq2 zi2(>!&z|GKOMGA6ys(B>xxFOmw&N)vq93^Y-GYK@S%zqByG(jXqlmpU@a(_0<*#C! z)m>dR1ijtqgd+m~81*A{$69>W-5D?G0&zz=f~j5#LlMyg#CE&kn6CPyu`Vb21koPNaOroq)GY1zYEA1eKgo6*mCz2 zRLW&7d!~#I+C(ZRxRs3*R58DGDG*I4AHpjkjbQLHZ~)8c4ToB-N4)g$*y(8uBzP&y z%fg+PenpehGbcxxV2{CYIsasdM9zK}bEoR=J3hZ4^>0Ezdn_EQN(%NIK)`rDlBHHy zg}5)HqZu*^J--WI4OK51tbd#CJCz>P&#&3HG5Ki0qJK?Y)E-R5e`gU1hD#%8t6;)l zDQHqy)p)a!%5_1%8${f^gGzMh+w$8abRC_v?E@VBjUOcor%!G@4~HJN2()cbNpiX$ zO}FLbd4?~#aFVpT{hTz0|MVxKJM&}`R|Igpe^|iJIqRg7=(H6zp8n7%1 zad(?vKoU9Kvo7{DCtdrZgqsC?x|@$g)>D?M#ZKP(9L(#pM>5UC-r2wl^wZr4T5oi~ z_&COnEK{@-jM3`$7N89&ump*3-Dhu()(!bZ9mq!8?NGIz0qM6hf%J(lOK&rMNCY;> z*{GbeYP*BrrW%4dqru~U#sFX%f8gV85cLmF$rF!=INg~td0ckpO=6YWe>d%MKphmg zyuzp3dgn*t+k4H)3HzUMi4+#D5xWfCnaDfrOZ`l&-D|p0DxSnos53(TXIP-t2507= z-T?$x8ed9h6xS2bIXqhPOVi7Tc#m5tN!!kY+jw?s!+$%}hJR0KJAc}DX4Tj8{J6Ev zj!)R|&T1ksFI8M9s`i8fPL>REFFz=Cn=T6XkBuhb^@so6?$?=)Kn+!pe+x}&{vN2p(Pg0AUX!66*tyW>jO)gHSj zS!bs$DraLxv0$k6ih}pU&pZ?-2|7Pe4{&FXw8?foty#iG`^?7-)h{TtW?!HF6Ap!V z0O|NWkxXygWPKAmS(ARC1OW_4z|f%Ij<$BMABW;HSZcN*^egvqIQI88d>9-pzjIni zQW}A49>Z)sZ>zNj1u zSKiQJzIXeRy{-$@f{Eob_-r4M*N36^+`U=y{K_3-M7}lh210(Nu`ftWWV8Y?Vvz&5 z1tS%zP0&b77P_JkNgTQ;iP#&%TymB~5-T4ZpX|`y9h_DE9UV8_0?S3B-9?=)2yqFK zL;lDfcZJ*Fk9iJQhPG%0@Y$>Y-uk>S>C`1<1$#SW)yLKOn4D`AaD*9wgbIwea~ zKWyi!W}YuD91t*LMrT%x@lD8ra@-N2SzTtwV1g<3mS5TXRz%2-I3!`B`|!Gt=3 z1KFyx(1WvprzeJ*cmZuUEb3U97pN0#UG0}dtr!JaXv|kkUtF_{dkxXDyAHT$b`lk< zjUVr1pmG2o09)N*OtLMU;I3!IJBa4Do+&Y$#Uaow?RPNCI*a%Lz?Az z%-;FNy8Nj8TisRY72T4`wVhmtUn6cpXrj`S zQtj*-1^ZKX2Z?e7))j;HKfPWIyk`R$FFn0Jtq9d#1cf~+7Hxrj( zIMvIyIvI58nb$Wgf|N=hcsrEK0{?vf?nr}N`Aq9&fW3YShk7P(uZ7%y)|NjUEL>&E?IBWFR``a@xp$<)hrA+L@ecGy6PT>G(wMT6G33 zjWqt2JJ7KB7*2il>cZWrq?SO*bY%QTx1{+TePkr5I*g1O7%bhT# ziqwI>hKGw{JtPc?|szA96&{+yU|&M2r~N8sO!=-M5oyN?3HjudCO^5|7@u|w5yH7B!t%swW|JeEcp z5HNo13CwNiAp^H2W#YX!n4QB5Zeb&W{-3^%fb*w~9=!G?dX{Ak6c%13&Rbqj1~@l} ziV9Y@L{4>3tq6X|sLjypV-YxU6F37wTwP6eGp4a6L!G~x_U&`&j}O>KL^l!*XX+nd zv3!@6j>8SQdnX?RG_L}FW>8QDHSk7d$bWelK!dK0E=Io!-}?iTKGe%S)v^azG~C*o z;2o73O3PrKE*5HXKk&{NmtFD-(?jl{(PBaYpW0y+%xw>t`uq9I-vM4Qa1;vo!kTLK zG#8WiU+7<3&m?l~LOfx`(Uy;^M6MSbqxG&Udu+r;T5{_6Qq^%HamrXBG^|DwX)Dtj z4{GY(+b5e_Pa7iS+~g;d2%DzNGwQ^iBG?$SJ*qGbuk%B!rY7kTJ-d;nK27q(TgtUf zi8s^C4Uc;B%f=KpN@HuLc`V*|yaXh)Cs3kn#tuevg#j;Lo>H3M&R$z)(gO*qdm3 z&4w*PJlS$f=F+?5qE8*yj>c-X=e6{1Fgw__Qjugt73c=i&eK*a*rnONoC-zq$Og-m z5^0pI5YrMS)oE%_Y7?aY#n4Z#7kAPP>)|6Yq{#Lw`xpez#$HsLku=kV$l&^0M!FUf z>Ll>DE~I`{$BPXU=!+Zp1wZ_&`S#4Sx5DNkJ^xzub$4#EE#dLmcx41Gf3&wXMXtMN zlO=Ke-g-MEuw%8Y@E1o{3#PrUuDeMC$0xAW$3Emf`(oV{NZU7;4W)x8DRug5P+Z2+ zW7vCT$)~Zz%g1jTUKUiSL_3EOv%ZjqufJX2@})ZEb(cBQOeVcZ7)LhAjr|g1AKJC_ zlV1%3HB4HN9s}xWP>eglvsW}82h%Zs>K(pHVDT|w-+b29rkF0`@~73`V-OHPn!K^Y zrQo+(59(w+?lu26j46>qGpw);D979S;F{^F2bj_c0T&euyhl-|5~mSC(&~DquMbB~ zsd;pm-qd01K@yu`&P=w$J65{O_j2cKyataPm%`>u5S3 zGreiTGrY@{EtaV6Qf2)(5hkeazBU~H0I83GvgV@OjsGND5|AM|z%xKt&2Y{Sof7Cpk=M@O`okX=fij72x_>s=(iOO(&|7*261 zkWEy5RQrS~(Kfyu&BnN_j;dPoq0(HZA0+cV@uSm+4X&@I2p$b!8ar1dZokT*k;;r> zxUWNevu-^NH&$xkF{<`zZxX*iP$hVKw*mC=EuoD&$pI{h7P_)T!09!(_pIlsG6nAT{=ygf<7u4et2sK_ZN_uiqB z6a_2jNhi07rX#W4kKNYte=hQNbXRAAuoHRk&qJfAVbjt-n0PTK-N>@)n-%$smiNLM zOP1dohuq>ND1`#DVBr#FxUeGge1~Ymtyr3Am!J_IK4s^fyc^^J-pUJ;2)>LV zdec3srS2^zq;iTwK)g87B%c=F-!U7{WdTq4bUDZ z=@}UK`1zk>U!}#w+~Wfs#8rtwkrQeP3OE2km6eeJqxXWytJ%&PD=KiTvqb?-%$oMk z@#aLHo}9jZ=Gga8LV&Ou67FL7TLFl%nQaDt@<31G$#W?HP`@o&Y4uM=;iGm%-bX24 zY5lxUy_9&i*VT&6chy?R$PBes`m<(ve7+0?L|(5ny=#(_Gy#We&Z)b1iKm9Q=%Mll z;ydA7XV)VS;$g|7&7RJh7BtXN)#dVtj?U_LR{*M(n!{rxaqKgG9b6nRtTiY#E{>pq znle2l1)UEiz^}Y@qol2k%KEIr+S)ohXrEPBn8LbKZr0u5aZ}Nlvc~ky^`%x~TPbMU zZ?M}hsj7-8XLCkAgyX>QAI1eRU`8dxVfg3YV*(@|dPiZ4GkVDyX(g{{}~8z|duPfW@(rhY5g$&jOH9S2pPB>8o<{F{(d)$wssoQMB3y z^SI%_rx^y6T*Q54gZmM*YpFn^Lo1fdZP@W2`$J06hhK$DV_&E07^|q(L`vd8=d@^i z#2ImFhydW`Zj=u$0#EV8EL2xrW|>-Or9{4b&26B~zv$Z*bbg*WC)-h(2V zX#S7YhJR0msSq4!OjTr>8XFT2o_=+OcY>;c2w{VU$j!+~Dc(39KYnMQ;@z*yKb1Q8 zYxsU%z`t@1Y8?fql~PerIaq!h9Gv~Gf?OGG9re1?;a0QD!{3AOntIS3 z-!}d2Kj>2d$SAjRc9*R|OJf9MKxq!BlUjPs%oIz#Vw0mZT1^HjeciU;>C(z9_S!Y&7 z{P(Fy5<6hagGZ)d@gK=XcR5X=xquaY6QNLOV`m4tZa5&qB~M3w!gW#Lf8hXh|9BIM zy9HM~wKGDcu*0&rk9^Z0R0R#xRivB&}R&qmmoXJvCEAf$ZV zIV0GPb!#=1Z3``U_Q3+oQvYkc@ct8Z+_#l(xo(#{K-asd6AF^a_mjUXiT zPaXhalHlLNY4OSp%tel9Na$m4pA)Y0jbqknK{PjFTur5pk~NtZb46b5_%W}E^TTafesluU+d8l(?rE#ZRF0xNF(@Vyt@Qn=;PEkVScdBu+NcrE1%xL6k z{qq8$pz~D?)U;kMqtXH86~I!UVpR*_AVQ%Mbn=$f*~c3+u|8{d!@NL`V`*YJQMgPr zkcw3Lji+Rt8^=1L-HWVsgg0Vjg*A<+^Xpl%4icpT*2(iCV;ycpZlCtXUSmQMRyzyK zs0=jTKz1CNkGGV3e+?&O8n~4| z;#Blyx1(RkXzWIdV|rWr@TWZ}q4Pg0nepq_5-C@hyz^@yNDo}&vKLmqgvj8+#c zRR6oi=@-|gJQm&`g8NPSAH@O9_J*GLzrQ=gc(AN7e#9W=Tb`7jg9D#fVRdyZ6)W-K z-h1QladV3;$=Pp1en(JWq`GI>M|a^a5;_vNOc4tSC3Th6)R3i^_|$gAzJZPo0Jl}q zG}D=8i}jWP40{b|D58xV;0;HP>KL&i;RE&j!#Oep|3xJlgJ9$--9nm3@;;aYh(V4|ehjY0@jlOW_$kb1X3QC5|anws*n2&H6t#4ApU zILf~V4;>BkuD_H#1dZ}wl!U_T*QUjQ`*N{bZZj@coqMnwLY~x>Fspz3TwVu7CuJ{> zvtW+n^^f05MqOQrJu^m|s=iMJO8$Bs>18Fw?>UqD%Z=DP~!z5>%);gQ=V(nxFmt6@${%mS(}6@lTko)b!~f|zk5 zYI12x^(0KoNxUzPUfua+bV0CRcWlktWSQue*FV{y%QJGvh_D3Mg68- z>9*${^7b$HA8+^CkNr}2s>H3}N33*H6=>j^;Cs|N)S;E(fZ4q9t&YQD$M(Anq!**X z_kW)_>V^n}Y!DGAjIOpE20O8lsi>26!h}BSplTU-2V4Y{e((~iPC1Kc^fjD!*{Sz; zo2S_&*)m*g|FJh3WnLG%F`I5xdyjn8($dxaudAUKheKD`Qhb#_OA?rayqU!*!ne+^ zGpl{=6o2Lm_5HQ4Z2nji?ROgcmyV>r^q@GlyZfIpognW}<0abP^sS}%|uyh-~CT%;l+D7UF6!WBipMrU?$M78d-vI;X z@c-fKE2E-Z!*&rAL{gA$k&u=SX%R(Ax*KVRX6SBd0cj8^=@u9o1Vy?9hEO_&?l{l5 z_g>$3)>-TP-9NU&^FDFk*L}sn!2bR|@FQYNm&p5Mv94*}VJ>*XoW zR1ZYGY4zCk{~fn*Fcdi+_7<-4r=Gal`4Y3mJZ1;6K-X z5wMp$$g6sFwh$@6H-7$%` zbK*Gt%wH1|4(+dxTw>1 zB@4vQ`$~w^msD$l_ZlF-q2?MQ3gSJH9S(Ea$p6BM-ld@-lar)O>#u(AtZ-VL>*{&s z7pn^Zl7-&W$nUXG0A@M=b0uxwErKp&jzZ1lsSKyl18ozX16J7{bvL^smv?AQaQBsF zc0fSD)s=Uq;?CObTNvL`NZf;q5|kf6fUr)2;!P8kq%0OOs_^WrGj`01%Nq>NQO=zI&X+xBOHa)Jg9qoI8o;;1&~}a=SGU6S|Lb4(N(OcJW%}%tWU||)6h?( zrJVp>gtE~5EXMFU={Sb_w9==+$(W#Ecw84#byp9{cVlpfh5SEk}_$sTgz@B_K3EZzW)1*_;rw7sSDEQhr8 z7g$Q4p}g|s=lRcX zxkYojO#8< ztMAUtKT|Jjid?fI#=$r!tjKA0p5kzcf~1uqXBc7nAcJyP?##eU{q7m}A??R9!fvB| z-l*kfqq8s0xS?aXh8SI_C69-V_PtWTe|)9>?4!m72PrO&E)y8FxM&e|$O1IFm=s$) zwH0?&{GmzZHsMmUQQr?C(t}f1F3NivGWbC=!X54%%S=+l^5PF$v66ircN@)s*-J;Q z3Nd!^g)nIhF8CMZ1bJ;U7n_at2|F;NvhOe4>lb@y!gU+5r_c5IGbuJ_$5e-HCM|jw zovHfWg?nR4!E9PrFTRpsi|bD)SN~XY5Qs+=-@%FZND8ZF$!V|FinQLueWxzPW)8HuYn$(UFDokL(LeVdD&?1fflsy+ z*vIHWgGNO>q}H#BS09uGDBz<^;!xu%_YR>rpCvW z>r9L9;-=6%O(d!hpw+nHs83UW+mTgdpkdJePN~r{kTEYU4{C$z^9ixPb8nmLpWFT} z3(QG%p`cpdiZ_`ex-j~iNnTZ-B^xg})~kSfS|M`NYPiO3n1$%&p}u3f%RRl@6M*pn z9&t!cZmwjB2x~#7`NRC`PJaCE9}C~qs#zXS6HfO3Um6Zj~JsuuHB5Kz0x)a-FAafb0N`QV8*LOZD@5{gI@aPjzYy5Ei z^Tjm;M8$FweUwjKoFIOa(c?5{EoxgAI%{jpuNyubfNh`WE%-?{4EpHs-IPya)$k4V&gqasCZx&GO61A zL*%hi4GaGEZUE-ixzlmLrh?{%culZ{y_tS;f0U?^X1pJaH!IE6O0inYgdMHXk zxcci2mW!%M4*wFwG3|P0D_-&~#LXV|b<|^G;oQu$QflWOKdL%7x!=nUC=1twlZPv2 zrmRuJ_gf6`WSN-46r_r90SaT$=C`@5#52;O&RFmA#gO!$^3l43)m?Poc%MZ;eV3kJ z*TH71;N*meii*bFwPkkxIyNiI!pnV@wK_DfjdTh3lL-Z^%iQbB%A zBB~meqB5md1Cq#}tq*>7)JkkGWlDFQiRXLkn6F(}bVPeuLpYqqVI4ju8qd%FB(j=J z>*Od`y6+|`4bE@jnSMW?r6B!?@d$Kfsjro5?)BTk;rgmjz26v`ol(q2Hv@BTs*JOcbrYP}Y}#)wK&` zY2eqmhnNmIYi>t7cEyLN38pgoyc%`4#b(~8Mub4AXsDDis`G-8+dWaDV2-v$9puuJ ziQ#+@$(qxmw$ z*O*}MKVC9gbeER4gijokyR3X(C}vc}O%2=TeYVHqgab>~LocM}Fu-(w(^g@SaL2*~ zbZq~~QoelJaWT2!`Es7Ny^GOWt)OMOr&OPRQSSXwL;Ca+(AWbF3>znBEPzCiAky+q zPryJtrlU}%mgIXXlg>cYs5AMj@XLWZMAXx>7aYvIPTk$ZFP$|@@jYjnNp8g5?P()V z?{YrDmpn%Hty>ujcmGYT*5mIrbLrqDCzj0R%nhBKh>b7YHU|V4 z;@}$a@E#p5Ek%Wfagve=xtsmTh>x#%DceR*ti_PDCiUNmf;F5L{Ve@KU6U4&h)?7suJ=-9u7d+^lFQRRQ_(O09BH19Ll+qqpSH_}JSBkCQT`OUeE zV(`{{ZUJNOobc0b&gb}ah*mt#FUVec49B|cNJ=0xt+~^Z4INl*D}kJDjjfx>$(@}Y zLl+nC7xrv^F{-;I-x+pqsmO#NW`DLvMj){0gHP61)wv36r@U_^wyWw+Ol?>F{=}^DNbai-HTN(gLRM1tugZq@ zt^H=>VqWbf|7vwtIR`*vfV=cxI7Z?8am`jMem`=5Kl-p9+9pHXUv8a6qgW{o2W-k*h%AEblbXr$j?qAd~el2cA^WoP-o74WqTiUqiHMKY~iNc zRScXEJu$7KtkF^o3{ICPi+hra4kH+?H@tA$fCF&)-o63(RQuphH6(d+5oJug3J7sI zeEC3E{=VGnM4J)3QL+@jTMVd0GZsd~UtFGI2n!3Fn3yb*R^{ab$z~eYh>How6XgyH ztm&N*RA?~Iai^nFSzS*o3h=r5m>*B(-*VCq&Q@Y*l;#LsDIe2SznVr7P*6QTsJpZgOmqU%v9Th(E zsJ?v2CZO{*paQNENzZuQu{A9!fT{t-J%UXM0kf&FLcRcBcR#!LGd)eJwYZf`?3nNe ztxAhveK2RwWp{s#y?)-c?H0V_&9Z{bd(mu#fj6V!-6B!bXM*2z9$7@ue~+mlxiIPb zJ^DnoAY6}$w{v1k*_Vj0#Z6Y{Ng$zWN`>7g67CMg%)=*qqorC5{Q-u_Ol(JOfqo=< zh_v0_eW@h3rxi#dAR{L8>3%|Vx%X_Ne?az^=k4SeC@|NlILYyY?=35D`DZmxdK<;J zcYTR?zk(MqAYc|9qk@LK$qafHc2Y72bK+SDHQ~~ue7HY}j{9k0D&o$Q=_Fr6J}w7U zzgx(~g|E^}LoZn2n#bd%3RhR)^?2nj+xw}$e!`60VHjaqBQ#*i_GGHXbxw5c0RR~i zL;ujcvh?Z!*~I@Lym?RiM}>WxX9YoBC$2}eQ+ANDx2;kme)9+T#6$*_bl`m_G4$@x zU<6!7?6c#Gjl%5Y53g2BqF5T{Tb|tl<**3$17$*26^4ky?~`}`@PQdM_ruTM1rr#} zR$()a>>9(0Ga8H^yveIu9&IP-Eho2l=4;aV>ti-Zi&{I56T>;d{fU&Tuq;D z^;F!ETqzTovQ>Oc(&QdAlTh5a0N&*K3Pi`vjR-mhgp$0;8+!KmvSw~UMP*kzGjlCV zaG$%zj!B{|J)M)GUNFY@)(CoLGCj4p=!%Bcc6XL(svWVjb*TzL(2I&H5n}o^M^K$cLuMLbi!1s)jQ8pUpKIHv+$*utqxMG6OeG4ead99 zOIf4Sb?0@A=Q6$0pItB_iM~VU)|r9?OPTNdg0WxXguUrC5Lt*mFqm^SNsJ|UNAuKR z{&R(e=mq_eQ^THK!-$sR>bhdB4!w?ULws@Ps=NDbUBjvIf#4}821dnQGDiC3Z0S&? zydkGIADRo-N>vM~jYCB_9zKLb=Pl&rnS#kcRYYe%ozK zYwM+_7tPkLZ)442SA9Jn=nHzBM$LXOqGe4rHmzTuM^t+SJ?K{uJ?fSR6LxhV^v(M` zerh*_$fz7%lk9JPs>&o@wK(S$n5DNTY@Lu)Zy}+G>*^wR2H*=d;ER4Q890uo4;P{0k z+)Ii?A}OuV>Te-}Y4_i7ENBY2DWC<<4kTURd!|?*=UDO*GSZUJrN_hXHirV=_UiFK zxXo|A+enOC9m+g)mrb$X?|(L3HQFrU*||4GtABd~@|&>UEDHn6wU$#jn#`kz7)CZWHm2&7 z%1`Zm4vw1_KHd_{O5iudyr*nP7YHx^N_$aWVm=akE=R51@>STF=|K`Ovd{LtczUJy zNaNc#ppKjFujE;p?C6l3nVd54if$=$+x0yesAwbmO|)MxKE>MM7*_k~fv|LoqVT6w z)^9{F9)6EWGI;Nd5?py+6Vm&kvFt&G$@0|ha#C}V8_twbXQm=dsqlW4)P|@N*Z$VM zv#q0pC&AZ(f4>KFye6R^%q;H@i-6YYcbioiFSR1y*~>f83n{mfwln1_`oy!@C*dj0 zHt)X?BtD%tiLkYspMkg5mTZ+}W%XWOBB)8fT3N1FFD=nH#ya~2&FOOBW}}Y^lvM6D zh`6yCa}QKm3>B)Y3ygdOk7HnvxCzDQ?rzxhj0Xqi@8e4wv%N!}ZnC~U^Szp#F@Hn( zEVSD;I9zCcz5=|x_IC4jRWH)zg2J$1_Up(;+)AZ1nbAHNodyG-fQ80!!W>c8@QWhx;05;^t-DIpHr(r>qox@>o>GQMbXhQXJSmk<8(5? zMs!8apeTV)LB58(f=~s&+e~oMT-{n1ChJG6Mde>=vpyrWCJGbyx7dA{1_|u)o@`SA z_z6iH0V3qJUEAE;bMVgMg_4>d53VGc+U{1Nsb^^gU{1$AZn{rPg+ z`bxB%_X#DaDz_#!2eh~X-U{~};Uj|gan3lfPRbpc)D(AysQCh*A`nIjDv@}XZ$_@= zhm3dRL|iw240dyx1!l^bcodx`%=GBB;qVHPG%D2EP>1jae|b%1c2`oZps8`g%r4}X zq%YC@IXiGa)Oy!xlB(qGW$->xT&e1XArIoS(c)p|2{ZA;8XY00`&7cy<}nbtURI_n zEG)LW>swWUI1LICz`?n8G5h0Psn_Gx58hvOSio~;OV^j*q_3|RJ{RohwSUvsrwgms z);^t`9iFZZCG*nd1bb^THysCEJhDJRY&4K~aow3M? zLX=e%>D)BzCj2Z@(S5N!0BCBHqYJK>s*Vd36p$}+p;1sNyb63(Ccb$Q3v6JvTRKdA|e&qed#x z(D@kOA`l^|#Bg_?F(_4&B0A)qbHYG<8#oQ%ooH!^#m1hK+vRHW*E&r-!I~cru+RqY z!2ls60nKgc^_Szj=9Jf=a`0J^ut7QAg_`2svbp*hH_TgdGd^yo$-TW>TwH^(DR(9J zQ$rD9F+00?nNY2M24~MHRjSsck|u>9V)t;E_b&K?`D zjG`JCHDOpK6ibEsV7LO*a9Y%NVEetl$_u*US*;Jry}owm5DCBi z@?qy!dTm|Z_Ydg=x-7S-aZbg;9Qs_-uSvt%NM zsZA`$`7$lllz_8?7RyXmza?_tP-GFhsXfi6H%NVple!*q|9#Dvqp$^}X6&U0;cLWj z;~xd*MjI*37tCLYm)YSK zSy-(Af@{t*ed~Vu=8x0qvDsjy^GjJt|Bj}akln#SXHydcGheoq^%2dTuFndehUsSN z?e#l6t4#g=cxgEH;+%ed2mh%2rvI=JmYI1A z?t7D}7isd^C%v$@u$DW(Sp>ML_^)NONlZM=gI>wPNV;ds=cl>ARnxYRmog!e(nhT@ zoQ{GjcFVxPAWU`Tri=&b&VUHKx*1s*zRDfMIS_=nk)q=AHcChd>Tujn`qPF_W|Wr2 zS(Sm~o@!3BsJx%$b+zdp<6$5c)#h$`f%PyyyQ}Rmc7b_TxR{$$hjrinNlkcCs(dPO zf7RsVz+$;k~^A8F(hd z3@4ZBxt#y4+2(V^g7@R*Q%L5ulZVYN^TLPoYPQjVPa)8tn9+#tU<}y6DsKtjr!qSq z%_%*n>~r=%8@tXME4xceJdZf#(5`Y;R5^1NUcXiv&MJm7r6J;hfbpW0Cb4;-O^ExT zB{w&U&iEBYLRbn4XSXf-J_p0^lJ6FWt)8#ZGa~NgZ_F4Y-Eh=LfZtFXx!z8YRzJ~} z3-XVcDrZFg5y1IEeo_=yIJ3Nw%$KuB_V4spx{&{L7OB%#kjTZlyT?oyz5wR8bZW4L z2-rm#y{5t!HYLxmjV&2I#jNoYr297!x@KjJY=@s}2_VApTF+8j)5R9AUm7j|1X=(G z@Al)Ih41S0w4ZL-6a#}#lie(dTEx?GboOk|DlOk9C*HLy4}rOo%7|;-^)m#5VE;xP zg6Mhyn~LUyA8nJ!@?}#ZwT?aM2fn2%)pf4O8+JA`y4rK?V7sH881dx`i=c3Ev9);U z-c{D8e8=tNo8p>(#e}pRA6pn{eCNdhJB11jAUI|PfTu^76>%y%(tsCpR0DCDTGzoc z$6;bii);|A*0J=utlr)AJ2{?LqTaiqORc-4P=m!%i4YUk2ypC5EAL`ru%DWYoL*bH zsigjFLcAWRjjecD0lod8w}11-VhvVbkE5}*#3?RjwtU&~sepj3x78u8hOf)ogW0PP&651Dn`l>ks>)i6XP&_*R(X=GfY)8 z-`ev+!*O{4v_k6n`!+NC6EFFoid|8_Sf80OO%Yo%ZsR47WJOBG6&>J!gmUeRc^;=f z)NIraJQOoC{1f~$G~7=H{@7k0-_@&*A>EFGf`W3_kn&X4aVuCxb-(=aG8Lp|#|~mB zAIjTi;js4wz{C+ytlz1J%TzRN`f4Ve$@TGAB+~?IweLp`ni^sDd+3ff;1XmlA%W@P zR~PTHZ?$`zkoBxDS}y=d}xle zSWA#!?6!WgAN)bT4f)0vQS$ThK*VA(43Dx5L~y4%y?>d} zJL`pXMi{7ouC1<;NBcgzIQ1i7BPlD&0xhl~q!@X}_jaP{!tQ|k?(_mlSKY-|w{P|` zy+K;Wl7bP20k42S5Ck#be2UeX#%H5ZVW5zrS*CNZzx`mPzoRQJFAwRP!gD(8T*-oJ z*acbMA_}mbNl@7n)a_XTF@(i3&jElb{SivjxEUR!*`$pgMkSEwN8s9E%gT-sm0W$F zWlix;d8A+XDK&S*sUfoIp@cbYf}7s^gh@fNjd}A!((Ie`nCYxl`q`HpAHYSK>f?OI zRlc{Zu(sb?Q@GX`6BDbe>#oK2j8V0`!+&{46lt`#K5*RcY=Fo5u2)YVOwFz>9O_h5 zZz+rf#*HG3p4ZN49s zzfZ?OfkHYz1de^%Sx{6|1k6|kvBLbU2+gYh-Bh@S#}@&t^G~yTuTy>EW20S#rFHnIr;+7Ao)fsp^3}j>D*c< z2OLN_TfJXvG!}I+32)5C8)LkBZ*bB!eHk|LuLSU7~#Z`l z2fCY`&$gQ%^j8d3MH>?HdDHQG{F-L0v1cw=it0hJ+P~5`1WsmMslY(=pP5SNvO)!v ziIEYIF8!nc?h9BbOQ(Y&G=)GdSoypFJ+eUr@HG35@){dGZf~x)Cd+hNy@gb*MU1`} z)zE$$Ps~I^aX{cu@cT>E?CJsIBlP&x)YMAs1#;SNdp&ms@yM|=rA1v(SLGoO7wYXO zUO5>U7?_){TpVvncJgp@zY@R}Wbl_8_T5`MI&%3krUsK7Sy~y+Xt1Auz&FgKmi63& zpqtu&jV)-etDJ(|AqIU&a(@z^1rB+scdT=kwELk&C?8w>BE*MGyGjP^S+s(%z*i`>srH}zq0)G)8m0cBC~OkqYOszjy4mpX@D{IA zsd|&_;kyR?Km)VE!Y#8Xf$^B_5~Y_8ep%sCxIK^@*`VsL_3viL1e;;K)JC!Ht2Uf% zmX5!a^5eCP?mDXOa$!C5&Bm_fZ?r2lI4GevJvr!>cfPxrK>zwO1-t;ZEVzf-w{pnW z@5(~W`9nEc=e7sO>tRwB+ ziwjRnEIB`LP}cRlO)`LeBcAs{tIu%b_E59Y$dQT2eST)q&p0JVZbxx(_(frIeJ^0{ zRQ}WwFv;J@#gH&rvY@a0Xus^U{zJ2^sWY>hX$$Ry9e3I8M}pl77S`iF{%BQrbcWb6 zmBsn>L`1ZG@=T$e`GEO7-kX>Ys3T2Q9^4`cga`z(-8NcGhQr%j+y-rIW{v8o`BO)u zzl}vMU!VHO086qo;1Z9UfTS^o0mHowmnOKu$s+GEq)7ZL`Qki~WuzkyO)VWKC!{Bm zXc_0vn`E{Cb(BGcp0NDPJFXxSeDmYwJXdTo2D^kQH#fIZPgnQNN*gdJ z5&kTY+O>tM0bZ$UoNxDxL5$cvUjlOAH^>ObsPN|7e&8Od2g^k5{`aJ8Jb~+O8Z;i5 zWnT7-`el`3v_AQ-Add=%W`lZs9*l7@(0wOnFC8?e=IZNRHEe=sGT!kflVjJtfGtg> z{8=Lg^(@lRPD*#bytuf-0=UW@_snh$LFso<5N>9d#bYgtrS#M z$CBA~CG3k`(H0vjJvYan53vBDh7PVlOZ&;wv7zO$v^u6@Z@wMM4)Nj@Ek?% zWAzaX!{LMSp4|SGN5{wc>NFpYH}nb;p(%BSjvKiI0{ubzOVz8@CRBp4e(mYW7^8`z ztrM`yCPzqp)^$z^Fq`;dwxzRVR0En%7d7WcklPpFjZp^CAnti-UEh_#=U@e5;~tY# zy5$y|sd7G>N#!kcqw~F`F56i%l+-(oA#i0&3-Ud$=D`S%oOTkD%NK{)A7T0{{B*5w z7h}Zdx;?2PSnru{?lO+Q4?sDdYjPgM>t&RqJ< zqjS`CO8C=95KJIhLT_VEOh`EL-r(1gM=|UB+ZLu7|tV{z0u~WH>mg z&$sr;ksm;svW0V4J9{7dA)>?pv(@BEsw{nUVq#)sq+{+EAO6dv^vB^1stwfuG=P48 znVe02rVKMB-#y#d{fXHR!F}n1?H$Jd49D;)CSM}s&9+Qlu9H#ybZ+_DTKXpZ;=FcgQ7tH_%W)1h&RP3`6~jI`Bonh7=BUwwT#g(6awAfFF<_9W#=$?U+_xzGrMjt z-4hDhCJ1F(22@o-T2KGN9s)t^?3j1j^-}Hoo}Tf=DXGZZ?^nX{W`--TGWwk*mKA>E zBx7&G|9xvdfM2HT0=a2ws0AavviSJJ&`^#oL|aSYS}N!zz${Xm?Jc8f%!rmT*LWV( z3j^8j|L?F5S8Q~&H$7fwYOvymNet^c=pcY`^Jo>kz^TI(*=i z6AVH&7PG;*&Yx7s-c8o`&cZ+YxjS7YO_`1(e20XHPb(f2eba9Z45)P>Rzkj4f~1_@ zCmSFy$4n;WDU(uGFv=c-7P^mqo3Ch@J35QNhY7I&P-BW$2x~r+1X*xY;j%}kH3SCAy*e~Fk+(OTSBt1k(BK z9=NCdz;dH{_)sz>F)>jR)+5q>N7;VQV{=mtMpPIS_``0tUUF?ur+aG@2JO)QS>JO) zbgme}EE|S0RruMUnsFna?#bQcV3y01aeUdD;yc;Wf+M+_PsY2O8vtFo88cFVyCoHK z8Ry$qP>6V@oFy>40kuuN^~9Hfbb+9>)wQ)6S^<9}ODyG6^oi%*XI$Q@kol&G#_Y{a z>uG(UxYun!Q;_J}09zHg=Rth(u(-O(p4RXIkhBX*>}>_QdqHJ}F@XSgw5TGiMm++G zhJi<|*W$?szJYF1Qj+A8KXVcVcQA4=hR?t~KZ;TmA8{IrLqSXG>v*R&0b|)B9NJao zP|(nj;$v)yvHtift}L1*1eRl9^1ZfV1?E_j&bK{fc z^RiWx|2+Rm2Y=#2iu+J;zb8RdtOw(;xUhcrXjV(&PQhFI)c0}DMZeDq9g7W87fJvJ zZb~Y_-^Q|Uh+tx0$wA-w;*qYsZlV|4)MX9j-`iUrA9D6}WTuVZe(t``n|X@&Bxc-E zKizj2!7B8paAMFC%~SZRw`*4}rK5K1x~Y@BdiBa*zNod}^JfX&IJ^63If>xYZ2zi@ zvd?$_667WQ{EuP3LW5!tg(86wS$&{sSD-vBHxXn@r%~Sxr_aAb3y-6Kp$#XaLhhAD z3Y7PEQyc_m(J?YJzk0uvDzuCP(KiAYGDQwrdKZd2%_1LPLWS+DL1rI^I@uMwMGg#tL>ugbQOyo9abLE;|z&08Ar*{D6KaRr5y=UPPTZF+FsZhPdZX% zbCB}<9b8SefzVS*fczIcdN==36#xs1U!}?14Ci6E(jV#1ZqtXD}j<0 zTM0{(4q zfoFUXWZp{THL> z(R5$?l?XF~;JTB5`LmRHGraA(f1BHN(wj1FhRyW^YCnzrK}Z+?o|!-hg)2S8Eaa{I^1Y=7UabPs~9~>Ot%Imud^c!^-;+j`)x` zi#3a$4rqsrq{d7WRon@mg6Wt`eQWPvZAt>tVDTYywG zvy}|Y;qmcD1O(M^-+ZcW3OL4$qqz53Wr^+p6Q!QrYPkFBoM!+ucx`z5w$qjiu6d$Q zmuTFoJhlqrt;`HJ72n6ibZRipxqTx6ZPJ63W&w-qp!|I5KxkJi-9v;_jnMaZSOCAC zoWC9d93((vqM^Q7>g&^f0lQ5nfzS$hlzn%}WBw+_4)*ieYnYV>t!V21zuo@7*)ks= zF0;oQ2d+0Nrt5tzb0#rKnkEUrb7=|Tv8iUJ7>%CA7Mwiec=XZe@UuS+_8B)Jr(BV= zu`B%*yb&2+Mt7cVD~hx?2X^3AL)Z@?XWc}^#MIBB_=A$#NrmH6Q$ZgBZB_RT8l6^B z41J4>dYj#Let}|4myVa8KX4yFQ3>Uv9TV-JHogEjN7=kbH^h7y=c(iqbsL#|^y=zr zaPz-xYg{LSoITDbG+fm4#^xb^zx+e$2vd?N?pLzf!QoHQoJDza&;tu6E-4q5OOz&|7J0Ab;KyRIMj{z#JE}ssJ=*iJMd=n z$bj;165Kj%REa690(dfpXLIc!_bK*WS5QIcWJ*d(F3*osqj_Q`ye^|ak-Xk4shH+} z3fjV)mEKsI!rz|)GIs&wJm2K{32Ovc+lq!@i3FCpEb?;Mq4+}D+gykYq69ew;!;yz z-%?6c`~gCv?U@=`$~{WAJ0-de_W1)Fc6-00PB$k?&OKoB4HURiG!b4P2KoRt#Iyqm9J7>LI2h`Tow-9xKulr)Xp~X;FC`@ zo&fh4MTcU?TQKO{o2aipUM&BI7{JYYGzPv0xXy+6Pmbf`dB(<4xR#Ptw9ef8Zrwf9 zvrNEr@X^D4;;YE@4IwNI!hzGi59!1{3$cx?z+b6B;ujbZ#&W{{L*bOusBw8Hf%W~w zz1BxTKD=MaW5>Ope(ELo%I*~X?!J%QEdHym9=Zf#sZ9Fu5x#Lp)Pd&OQp^r`%n>VQ zGE72cXF3d)Qq0B0h4SOirrLLR(127a+*A6XOE~ina+eC1hwP*Oo`-oHev76+4mUs- zot7*t>b@g3yad3y7yCC?heNp*`#&mqXork`4d2a3##KaLK-f|=CSdz+ZKj!7TeGY` zdxAHROBaI6iF$*5{Pyiz-UJXG%LqThZ9@9B_YoS1ZIhFi8@3sEFI850pC6cP$gdvx zx;Dwn=y>Y`v}TXx%y`1QeK)5ol@@+av3q5u@2*w}YHDSMU_mMrExqRE&gSLhQprvI zHFu9mEnm>{*qE4V$o_XOZf?{yC}uugwV0KM)!K@4UI;LYQ>QkXDZ*K24tLKS(R#;i zuEW-=qbuOgik8Rh__O7`Tgd^eB= z5Y49VXfc#RsG^mveLky3pMN*wc$@pP130xHKmYq25kH8z|JsxQz`k@~bF{!`gxKTM z$8Qk@t_Qwh!{&1O`uZ9g#J94>_r*L8p1{y@y1f%BGcq&T34JRa_jsGIpGx`*;%S?k zo7>xSwCI%I@9ruWh1!Z$`k%5dL`=`wB6HVh36lwXj|dT)-$p}TyZc`Q80bMN=~y-0 zNnJw0hsb2MA-Q)0Rem&Il_r_kjV>z<*|T1PV%1Xl8M7f>rr1oB(fN|zdUYhK3(W=2;Vm7Gjk6%y3nE%GR zubJ2at*IAb)54l+271s2=wF2O!8j)=;wM>COu$)SIhziTx-h;BYT~o z-^na&bdv$LL$&(#wq!dGQ1VG=Y5`UwoXIg2@o`)Jzm>uG^Rqhp?xs@dRB}Qil-w6z!wLA1g82p95OGbKO3ykjR3&OlEWT^v}YzLnOns;%`&Hhl- z)#1IA4STk>`br*~o0JkQK}jn#tSu|a^>(t1^`o8huf%m?FuJ=LI8_MgzG>d z0TU38=;~!6{0=y)Ph6M&`u} z|Fu}>Z2q{ctljNfKr*@V*&tNW(jo=0E*aVD+ftMg4-XF)!h60uASY)8YieX3Yk-SkA8!1?z<2ms*Ie`EEvcfk_Lh3_+!vAk}Ts(+- zjd;G{Bj$*JBzO(BF&bP@Q(kG9uc-FMVwuYSc%@{xJowdyfuUh%x+>V3e<({dTSI;R zg-I|~JgP_tYAX(=zmp$YDMfYQ95`}qn>#*5C0oZpaL2FvaVEo(mzWe=9UbjTIO+K! z&La(h-GRxPF>Y5dFHEx4XGPx3>b)euB+no>FAuF$cSRMjZ4}zy4uI-H9v=ZP>ODK7 zwZTjZ0sFgt=%)stWvjE)LO}~tRq8p-ZEd9nU{KJ2;Z|teR$UQgU+Skm=Oq7B#(}cZrB>2RKv3X5H~e3$x)iddL?-G5fM=bR={0<*R4tOckiSajwD3F z#By2t@YQfmP!)3gigN89qQJ=nm$^r4YHl4^R94$JQx>v>(NhI^^m}xt^jer#?75aS zPYs_YnpLE<*|lwFnre2no~-z_yHzmI<}c5$o)f=$o~ma1f00M;{B(n!p*jtnH-K8D z((vNl#r(qU{PMD9F{Hn*KOJE`SNAW8H*4SywSm^z?2_?x$ogz0r>BqZ(atTM`^RjY zNzv!t`#^0FXQ4F2lbJ~qhXKP&AFz69ib_RB<$vaBeOR}I3w3xIYGRolQ z-rC(UgF0&>LQ7OFUMSzXz()@=vnThRLG*~0jh5ClK;(0&jdJgD?bX>#WeGY4x|QGe z{?-7@*@1 z#^{QTj=m>^9LML?D^pookhA` z1CRl7uT0bICC8Sc57!t1nXMDxabV+s7CmTjc5ne*Q~JfCS`zR&^6*s}85OJ$-3M?l zh?)|ktC{-KRdKoI=5-qw8{3`UWG|C=oP;LKYCL(FuWZ);qJ^wBm(vok=--5Ie)Tg0 zsL0`;)zv`$AYY#7dbA51Dcp34PGi<+ZBYKNW%~_2zK@Td9z&hE7^7Ngi4W=|r#%|2 z5IkSd97CZ{6O-kot}tWQ-WV!j?g7$uf#3lBY%r@C{^cXuwQ;634i1CY$BlN$pZ9qSs-S2`#t`P)Y4@HeUCv_}4<4z?U7&QZ zxv&(#BSO3!Rtw4$A1-uH%d@38yK?sroV>0{Nc(H6B;XL=s4f?U2ljG%F{KL4NTPo@s z%(Ii>;iQ~7G_;1J(*>N#`T1)(*{1>LXKPlBR zvL(DI7t>MM$cfwaJ4%X83kwPY(UH@#8Ft%Wjm}I(522jih?EZ>{599s*1Fn&cKGrX zF*Gm`;%7|8AMlomi3v0wMA&5BAAfPb;+{!Dak*a&sw@S_3vs7E_rp)Y5MB}nPP1eq z9jP9b@A>%nc)M>gl!SytdhP#^^_Edlx9|ElihxK80!j!XDW!CWAfl8=cT0B+jdTfu z2na(eCEeYf(m61MbPYYg5YNSZ|MuR`{_hvArHdCXuJ4uSc^sePLt1L8LM3GtcpTrY z2(lBL77FLXh(_ZqYDZILO%{4^sj&>#W1V} z(DiKJ_lKDiutLa4b0jb$pRCkfXwsZ_RQqysAD3rjumHOp1+Z2aEKUNa7wW=i0ft%! zrtyJUIZ5w`#CFBho{RoOi6u^CJ|EgD`^ZnpNM#(hGtV( ztM=KAU zrO`PsTO`1WfL`q>EyIUUQBSU7IgjC<6>iOg`c`!8~LfS0b+ zz<5#s+95;5~TYcvD=oI0_C+^c;-U;Q3aFU?@93+c+pmHEy4H*w0>ET!e<+ zFEQsQEP0^mryGzXvv(C(cnN>51x#!Q*=hpEFZqVq`&Q1Y8tK4u(s)~AN*BkfS=H9g@FooXgp6zZL3T=o> z_a4VG2MEvW?ru5q5o+gZKhZDl^{Tt26#}XG{u`WbsOewj6*V^g^6>_d67xrP9KZet zoz?+zNL-1<$n3V%UD!xJm~V}WEvVec?7lp)Aq2is*tdb9-3rnA{F6kgDl^xr*Y3^< zZ>CHF&!AH(JH6Ixo=3ot3)bf@1CRyLv@cH3OgIlX9gy?0vg$WcdU*~e@swDMWy^zR z&%Jk_*yhofmtZ=S=M4n~U&0B^xe7C>+Fn@y%wL=qOu_eg(^7WEp_?AFPbHP`>~ks|2y{?WK&G z3Y1(D4R^NSAM~&rmxBfq6iPq4G`q{xv|oZ_vEpgh9LfHYO?(}sX~qjIhX)W+K{T`o zns-tXDt9x0W*^iJ8-TNJZ%^IRBXwuH-q&EUs3c41@!Ud*{wnErPxFnOfBGv7=jP;Dk3B4ZF z^p5STlun92%D0NKk009rW6#aoo(IVLfZTnqiUFxngjCd7)R{y-z=RS7Js>T!9ANoN zu>`?5JM#6`xTqwM-Sl4jX&2ECBfU&x2nU4xI-L9&B6XFC7?ax z3f*~z3-s|ju8jHGJE7mw(g@5FgN-OgFaCx#HF8V?P3AVr^%fOKbS0wO8tH`bgzeJYV<4`GMr zP^zMpRdJ4%t@>VZ%+gqsfZ#<6IPD&;HvM2ia-dMYuqmX0;*j$EJjX3tW2Ux+9Y&$8 zUF~NFvqnAR1FxzXukblTz1M&|Xq;DDVT<;kl%8QIRyFAmp1Nw08xX{*)Gf1-SXmBy z%U>*^C3brFJ7vr@GoH+D*1uq6_iofv3uKh7d-pnIjTY+_M$tD!8)L3mUhNd%FalB$ zz<#%T?tzFg<*&5t)~M!4RkNEM+`uPZ+HUbs;c`6T0w-X6b3!C2{?MB?bi?fMG}~5& z+5GgBJZJqlY!~f%@bp9zk)T)CaF@KTDL173Zm*FekV}T5LU22wA%E5|>OfZH_m~(Z zpdX}Gt-?z@xILo?g1-ceC~@AI%oAr|WyE)IYfcomo?#dKa}EtD@^FZl%bjQTg*nXB zGZy(hCC!@C%~SSdO6zT(gNh>Xh-4X%fB0@0DjNAGz|g-}RaHqvg#$J*FoyxvV`!xn zam#>^@6wIksJ@!9`(VX%GqK=X)M{Tl-(^9sy2sVKZ?PWj*C$b1O!>Ix$@ltdvhS$G zq9S!6p#{W-#@u98cBM;%Zq-)}Rz^T-DHoVAdC!;V7}-U8r~^3(oT~E+daJ14M3+A| z-u^EoK$RQF(0r8gPQUQcFy+tdCz?8yvGtU7WMt*_PX?|g=xJH=>Ag*O?KDe*T?!#L z`bu{PUp;;&f%G}&}rCB}bwu+5`Cu0)VC zXo1iD1cana5+c8n0f1c%b~3azEb$Av660;ivY(s=*oodZ`0Z@v0*7#bK!8|t#Z?&@ zukMzQyZaEyk>Z2NMp~DsqS~aB4aDbS5WGPb>p4Y^OCoJt+WTE{Pxxz<7P7hu^#5;u z{`&j;a1rU$*hp}Kyovf!&#=YUcz&t9BFOvrj4#yS2*Yw3*YI?+hJzefyY2U-4{4BT zJAGHr+hWA_n!X2Wwz`*b8!%k7Tynti2HuSCkz3RhPj@$W)CpJ1}73sJA2%5vFq_10+&WxDUY>f=phKt#z?gce_rp6ly_RN(y( zzkB@2)XUpGiMP3Aky}RffYfI4S&1uTl}fGEy%UpjivIMH$k&~c@WmZ<-RT&W65dC- zYCV1o4BgB z^NCaro}KX?8EdnBwJBH7(8Dgh9tsIUJk7nk6yjsfz)cSdl3<1skp446WmuDc^o9z$ zAFd6F#S4^NtmeI;ri_d-0^7Fu0VZh5gJP`2n~Rfu7X4}G-XjV2e((VCW<0bEy`;I$ z-WX*oh-eAWJ%F4m&?9;>+a1U@WHCCw4qgwx`Gug5X3--?4D3IxB`DKu=}*; z_pZRmz6teO_?hP3S!jA}6zX_WSB!uIHU?-n!)F9Q*TX>@CjE0Rge_j9Tp&)k8LvtA zQ-Y05a33!MMy#_z+RE}T+RA_Q*#5`Aax?pnso%e6PHk)QHih)D+YLD<-mjSVC&^U* zZqmdoK8wA)`@uZ8p>E<3x=CSCdrh)KykpKwCoRFW8?0 zkmQllf=sWtolm#06K>oKu7jxL6>Yghs|GJO)cSwH3W(zq0@wht9TA)sobnNQ8t#Vh z^_eVKN0yTa8D*8c+)j`^H0L3hSswooXkGPJ@XOuSaMXt{DQva2=BHD7TTB)t_`J6CkqB0-k7PnV2PY)Jzl@EPmJ|XQ z%(iX*3E>k?06dy9XI-;pD29Bq8L948w{;`gF$K0cFA$~_Hu2x&EJFUnA^dGtiQn^^DM-|pw_LW|&SM!NBP3$KWX1}faK|N!c zSR&lij%#LJSy>5ODaW=>2%Q5`XJv-Cs25v9f7Eap9@IoDNhqJoqY~r{Cg6|k>`v%6 zu>gnrGA1uCZ$lj2@zczZ%%SCSYwl(iLcP7%%cnnU2t)UEe*}!(b362yD4K+$ZpVpCMF1RXVv~xj+@u=h+SuSv`jU7@>x{;rH{e3?6codHf4HD!=F1wK2=Ei|6(lq zINHqd0~3^z_gOjhme%FFNy%0heu;m(*F9D>0hC$<-@g&yqs#@OH9qCT4_emY>M zJwJJRaa7K(nOwhMB=Cus!<)1zJ$0T&xS#6stUyx{6Gy!k5?~QKzx|A(ipi})H+T29 zgJ!IF9WCo9{abTDNxfLXlxG(L*OT{EMU^FWO8jeizfN=4lG?Cc4A9crD=N6-ayEdE z=brE5iR5qycqS%`sj8{P$6+tC9f6%)UsUU6B|bQWuUfdK_bi8IER8pjk#%T~8OorlcHZ9w-Y&1Bn0F$%P?tYu)k1oDBH|+b}P7NnXBOOBAm_7O7YE9Q)I;_Z8{Nb z!!rC1RYMAk=ksCre2C|>M0_;@-n>)p?Q^rJ0n#!5Gk)K}8s>-UZ$-?iaV46^Na4;$ZI2vJJlDC(Z7;c%YtH9P zv>1Di3b5J&!@8ri3U3$|R3YA`FthUApl|hOqx$UEZSklb4&QUHs*}$X7isICbWb$Z ze)fKsm=z^w#Z6PQdb#5vUDJdY+^jwjoi#uj^gWOq-!uL)f+&HiczKKdi9G}9_iT8L zIxS%BaRy`)kA444i~xz|{DLoh(=c*Wl@GeQ8zwr6J17cJQ5Zy)2gW6X7sfy6 zMXg3A_e_cx;m{>CJMxM6b{|0< zXSC3sH*n8bNfOc-pgpYAu1GKZ+^$1q+m~*%t%Ap2_lz$M;h7|SMAxdG20RtwkH7AY{pyNtp1a(9_3L5P=#$!fnf#QY0S`-R3Q_rnVUbj~ zBUMT!xajBqf62Ej$hZi@KB@ns#N`*@Z6-vFt5l}lAVF9G|JQ1v?@$l8n9fqfTLoca zJG2f@uWmJ+YtFo74yZH1J)Q-mX+MIG+~+3Cq3y84RV1`p(Uu46huM3)*eS&-jBCci zAA}*u8^a*F&}X+) z$N@p?8=uZSJ-Pv0y7Y5rBhG`;pmKS=1$3_G1X zJxkG;J;ftLZ(F{rfzF=v!RgbLCbUjStaak-fZ{dey+pb6D8AqT2dqy-Gn)j0x7`E6r%5=W{|Y=VI>T*Z|8ngueg`J z$#to)_umWOPKA=-RlW0E7kqo5M%`NVdze3-sjV*5I6%dVK62y1L-u!yxJ{DpC?39j zJ{wmPvm4_&nBMB;$2_ zG43llVeINX*M--;LF&}6O&mB;KSu}GFTSj=iEK7n-9ItY$_*5XtGKcEjs6S?!pz6| zkGQpCl;3dHq_D$N8n1}dzGb~RGgB&O3=jw(=uzw70ht-#>?W}N5su!xdbp$N)8%<} z5FXN0&N&}5%K>GZ#!C?T&`WB-}!NC z@)1L4{0-pIA3p*d62?D?PydmW&iP97UipHj<6eFvb7-+oF+ky>slZ)WVvVtZ(ed%{WGj&Kmi799wM4IO_J^ z!eeS|k{QPE4oNBFnqOyWE!hw{jE_Oy&h<2>?OX--A?i;uR7=3J|>P2sp7skd}7y8o$ls&?-dzb;t?xWo_S!6 zczRK01+7Fz`vH=6_q|3rLZ#04vx(i?r#!Y|3ehqa#Gc49sT{0h-Q@+679|Vc!4)>b z1vHqPZIw~}Mt>xgTa;T>f&?aZP%;vU{lB*t<QH=lSi9ABUuRQdZnt~itDlB@6;TQP2**w|J^ zPr^|@&D!dCS7t+AtN_nYGN)*YkzlGWS)wXZB^mUju;TX#NXX)Oi5FMt2Z0x3d_-mmSRXc_1Atzm&h`j5EZ=$v9;iIO^ zZKN6Sy(0X~<*j{fxHATw!>IIfQUl%__h#3?LPwd33NHAs^TzraN{2fjV(pd$^6-0h zNINbTl*)DDPUYA(&yR9^2Q0u-zyiT$8s;-FHr-Wg42Q_HFP8WRK%x)&tG+sk$IEMT zQ&pLb^*pBV$(3`M4(as8Ui`{bb!KA?b9HvplYyCu6Z_89;NW0bLQ1%>>gWGVmGXo8 z(tmT8Bg5TrV6T5>8Wwp;k7jt=R~{gjH^LWaD;$oW_eXrCjVMAnz=i6&HD^~g?)sQT zU0C>C=@RKvUMgzc*|+1Dv}W{H4CLvB^{Y|-&uBnbP7aHLT&_1zkCo(g!-^b5>`EJo z`Z`sK7;Q}SU6$&MjKZ1BFl0Rc3N0b`J~?$@fJhp~Tf&4*4spO(x&fum;MY3@h9U3Y zIOZoc@?;7ui~7*sKHfk{p`_%cnAlCR_R$UL_mi!)<0;;(#-qg+~2l6=lYQ&h?F~^66IgK!(mie#l+cSqzBtu`)vE^XQQAq2Z+?^40CrgHN z&+w|-75{Rw<%`{r54X=uuCCo0{H^!9*2#Fm5b{C&XTHvmHY=jk(IKwm9YyJhcae(v zMqk#w`aZRIH0mzI{NP%smA%T*J4ry22OTKNiMh1jg@r-CVpCK96OVHQOA!$31Vw=7 z#G{i!6(XuRR)^P8_{6s- z<*UjjvQ?2ne!O2JUOwIInDxWEt=JOW|IL(RGPsn%$wE)tznCQRE0CvKy2#1XO3!__ zW=H;kiy2ngC)e-!=R#aHmh98pgsaXpBXT}a6*tW+=kN9pQW_&pxr*Fk3o9_xTM^w) zJc+}()tI#{?tZ&o^-QY~SoZ%udU4W=m!t!#*J^RgYo`x%xxmh-tfq$94F!RQ#7uB5 zEU`od+{`J1mq0~NMnY0JopyL!H;v*`ySj+jnqkTBVs6&cbb;mN38|@G`p9pZq}`gu zd;k22Qh1L=Z)I)G4IN~K_P)H$XNMBo87k2($#%$;y;~ker9qbZ+Vm*>+GYbkMuH+~ z&$09cWAKyU@%|X`rT==Gw*Etbzh$D^V-6gOU*hsBia4&wynBZ&q>@LNtR~+{L4Bk~ z4EhZp7QoIjmZO-Hl_gTja9YZ7RHUzmwOY4YS=5KuZ)K;W$K`3dI&Y;QrVD>pG0TSZ zsc~OP6N&|_3P(pr@m?C$X_N^E1pRL)k|TjNCb2}aA&B1e#-;Jio!@Tt6QrP!7`+Lk z`*Ran#};2#Jh+L(|3}F5MOvFrXie*bib|k*!xbq=8A^ksk4O0K|C6;GKEx^4;th>h znz~v*l9U>Q0uZRd8E_^7fW?5EJ;K-e%XMdX5{qatMUKw7`z}wvrJa_Z`#Kpt4V?I* zszyg$9l2b$!9lJ+$`#ri;Qu4dVVe-O`79-8lAYBF+qJ@ezuR zAo2S1ZS_^Plov8Lz;q|z`K?`&}PZ>JLj+W(rSDgK;|C+Uo~Uc@gQ%HAwRJCiqHrEY}Np9HU6VM0a=-t z9}q#*4P9MbpiWV;oS8{?cJo2m z@sxlbeP(6`oLA9|Dx>!_cx|~d+>TsXR1NCbY5I!CGdp)bmqp?%(SFmTWGQQOgk>6X z+lH~eY3{oE8w92&NK|A436TFB4$0jV4nZIU6Xg3S?l5@?{S2mm1+tdrI}|%8t}!Hj zmb(WKb$4{ND;i86WTvtGKJQ)D>U2C8?NHF`@u6ClsT0H9l7qXC)@QR<|^HA*j9#R;U<1k zD87HvO?r;ea)_a~v<6xxd4kDXdyVUWDkB>koZ>U&Cn49Onih=use7aTqN8+FG zgmB@;AD89t+~G}>16Z}(+>Pf^8?8$4DK3 z^#AC#3Q&%VtCz%0f`ri+S7TsxtB~Hw15u8X`?@3KEwwD6jJuS&t#?6^vHxu*umv7X zljk2@Q!_I#abGjDvOcDu@B{1OAvHA)y?}s)o13|{^|;ZiF|}iHacx3G0jnw~bzC?b zr6t!r%eLhK4JG@|QERuMN~($EyH7D%iZRS(I6MMee4Ey#c#!?L&FK z4Y?PG^sCKUdOEvZT=3y_A&HoJ{8Y635XE@6T9|iG>{6;5SHFulb+x2FiSxAlfvZNn z^ZF=FH}5N*L~LFZ`W`h&RAv`*?U+JivcL_UBij+U;m!-%V#=W)7P~`)4?<=iwxed9>H-1cCLi z(64Cm5hX}P7Dod~%MY9%S(1~JPkY$gtEhY*j+yXSY`LTL+!bR@+zM@071+?U)wdoj z2SwEs8Tf%AmLSgcTf6;#>w?IqF|-NbWB^uHsWtG)SVKcbrbmwni@?XUl6;9OGD?(` zypEAhiU|+TMJ=D1h2=S&33Y}4M-`R(x;(rdz7>TB2X$^7{S8O<6O7>6=_e+~*d+;+ zbW>9a@$tYy;pcK=)_w4+`|=vQ1)j z+HVO9BD`a5ma`k^hd6p+Hx1tNCwf<)S$#|CBe(zG;Agc4W_wZRi(`wI(p3tW!Xf0J z3#%)@q8=e1!8G)n+;A4uLLW{_BJY+juVA_UF1z!f;Pd2}nffp~i0Jm0uL#!5{>9(y z$-^^|qnMB?stc$gQtu_by;U_eB{VgCl$EnuKcK%UE`Gr=6m(bU)njK&$;Q^<4@ydo z7tRi}5mc)C%zL_fLy2b;|kT1dmbpT+`5Q)RZdGY6J&Xj)p@w{MO+ zZsSD9FmqkG0$1Tc?0_z2YPAC}<+dh{qfH%O7&tI1KcM;FyJltR)4;nCM1px;@8R7|g z$IJnRbeOcyn(pYN9H;yFsDqG0hY#H#BUs#!B@_oF(1B|yJyXWF+XAc~U?=2$k$!HI znvw$GFl0V-TUUero(q?6W{}s)^zlwN%I>XgeQ92<7Z*b~-R@nelZrYZ>i+TL@fn$1 zQ+j%OU7c3(RJ+=A0_uA03(JADO3M{`$ba_#|2Vh;*8=jN!2{H7_jf(EU;s8fqG7~M z3QRH#%Gm&-!<+MCu=kS_(K%WCSo+hd*SKM<)f8@x3>Ui~UP*yxcVIlEjHH9-`ek12 zeICQJcW4`U>mb*C5w8D+Qon?UXbu(6@qXw$^IJT^=c5C>Eu7j{&0~Jl-!kQp3l6xY zI8~IIWk=It#Ejo!W1XCwp5+5Oh`lFraF7JtqnEFjBtZckU>Hfgx?sd$v;#o`>oa(} zW-ZH?uCb2l^1(Hga)DN(uu_dE;22c1su?_u8zjZNY2zFh7qJd{92)3mw3xL*?iSga zuB_SY^xqF3dN`Vr9n`Je-NC^@OKY|_ma$pT*}8So_-)kNh0>}GA!>DTf$hJCh^w5- zkhFNcMkzu&c=hICy#u|{y%O6Ca|k#v&V)7i8ha@XJWuWexrf8ebjCkHnb){L>uqs6 zH$XI;r0L^=A8-x)K3(itYtB`u+-67huYyTQUTt%$?LU)~@-{ZxvoQ6_>SA*{eT8dX z44w}J+Rrd)+2V|={B1JsOcLucl1l{)c^Z#i8;||U{*=Z0Dk?gpFe+s zAZ>d@NvJWkorvq@*#RTpx{sB_IS??V968JoTq`?HEMMmI(G9slF6Hfy(aRk4;fq@uDAYjAHvV|wOX0zjII ziuizT*Vg`g)gU4(15A`A!z+T|F2kyfSG68zjOp|Q!v6UpOp7*d#KEB_cV&pS-oWTZR zZQ)QDi}RwA4BFBMTSvQEkSoV9e((xNCj|ws$3O^5rAzrBsZr%qj4KB9W}F^0YgH*k$_bQ| z1B8xaU-PE?xbI>dZ4%oHenAx==l<|P93dd)bv(UZ9|epYMuXRZ5uz;T*WH~7KJn_N zzFicoB7%Y!3(&9Dc*aw8TwGk6FV~_;_#giefOP|L>?9%B;SXqo@B|YlFMMazl{(7a zMvJfg*UQAr?9&UNX?}72GUf3yuZn~FYSAllu)>UDnY*nOp7F&a>}=*0zN7vEn+1@& z%)(G^`U~h+R}ds}f%m0-|Kg%NfX?FL>nUD0Vq4zs6LNs~+tISH1LOqoCjSi(^&{LP z%+xrdVNUIVcMJs*-;7lU~_X>0>`4lv)OktrYdPPWs)fxRK1@VM62az2`%@#!BAB<6pf z;ClBuJ(H9&tY*>-FE>I>uO+sB!K}a9REsptpLXEGVuiGB>ZYoWYk2qvleH~OMnbdy z-&atmzN8K53Mp%X`W}b?09hoJ8VXv4Az(sRR~GJq={#|Q&*ThD%ii8dT-;0QnB9CJ zv85ufb8|cEZf_SO2V&cEWcLU3lUp$@KKy>n)fMvi^tv`@{T!?T08qCCy0}Ug3NSb# zp(0Pf*wlZS^U{;YrR03LhPE!8oUs3{T)2*wdjX0LMKHT#m_4FML-CRU7fCbX=z6n% zyptlj76RTpH4tfOX)mu!;HE+bQfI{mUWqVWS8j~m5^7en>Z6{95+(}+_YNcD`tjx% znEuNvh6VZ@Km`w^?DAlGBoaPCShRlEiP=?(HcVXf@NVl@&6q4-jsKa<*pqD%OfRwu1 zFu3h{2#8P%2$=Fy2mU~igo6bD*pXknKqS>|@YW7Se8yVCElf5rz)xSc$ZtXZ81;tG zZP+dPd~#A(ZCfIOe%4xnH<7caeBq4={=OrMa*+pQQH?cj#I~FgNJ0Rq1TXXsX!bb1`Jtybkbg6L( z_~~mid@J+M1W|Wi>m_P|b?tVCuo2EH$^-3}ui%DYTKil|b<%%ZZW7X5UfdODqcwBm@3@ zK;EWZI)2YTfq18Xaa!l5?cu`lG!5gX%tZ>@7pgGuw_Aib%8ybX5tn95h zKhGWzGb#kWErIoe=Lx9%fpQ@^1;yroA-u6&=N2Ce?nE5`F^nZBf!&1)kR!0>ys;=h zr+x;ek>T>y$U|A1UrP~>aYB*)&nN4o+rRx)JNSvbL{|gqcHS;c@}&+uB`Q#yyglDR zmEKn}4yw0-8CQ6>oG0;60>T#0U+-uK^ya|Mi~tH;AWYf>AwIr0RAA4+$I}%R_Ijwa zR}L)gB7z$fDy=S z-4oDaW@puaJhgP@6nv7x$#&9yhg(@SrJ}7A7Qqm`dRu>(&y>^NE@>SD2!uT^4pc9t z{=o4{Y-t%xxS0n(18*Yu#OEo{f-n<`ii<=3;5>K$II={<#K3dY+Onko;b353V0n2N zOg?b431|f&q=gzBaLf*hkq550b7|2o7TdgIsA3d7e;66a1Kkg+Cf%a>8B&+p9}OW*G}`9b3))!drjX{|0~Ik!^6;f54eu_ zL6}CJwZod<0J-bqh7d?6Mfx@FG9Ejgw0wv*3me;DZ||KM1$p@(Ux`k`92Xat5)$Wr z6V5Qam?t>@E=kDeyOUS8HB0bFf43nqlL8y=?^Bh+WfPoc5vJN@VHgh&e5~tt7hDf8 zoBCdkM8HeX^0CV0HvaKq-QLdvGn^Jnb+f3Yzn2+Do#EVuc+J!vNtm<6GjZ}Dk|s+ zD_Hs-%|18)o{-l$+V5wBp*}vDf16G18T|O{)Y7R#~(wXSLeyvj}@Gfq>m zLQQb1-qlop1>qId3{7rcYM#x0h0i}0X(ZtxYJHhytEv)n||Z%?F|UEn`1ex zEruCYRaF@ot>)aX(WvC{3Mqi-BpO@d0RO|a(||qlpT7MOKDk7jA5UqUF}yhNN3Uzw zd&UDyQISs=2R`(fad1N)?(WdNLTsSv(%)CoGOENZ-v{8(2MUa9zC8sf?k7@gAPwa; zCYwG`{k>D4f{KU?Ax}k3)c3%7=kxwMYHnl%q$l2V`xw{e&XwPq#i5=z>ZQ zvhDM8VSkelFL{eE7X=aj+dFJU2GS2CY(>-N7kuC9FCf5Zd_6rD2L3!F2$E&x{aJHs zOPG%@$Ot7wvOhy6^F>pv@etb?__TG#@W{?QpzTb{A$G!;us9g4)+@H7WM{vpwT%zBS0tNaKN8zk*9f|3%g=Vh-$hBM(5N~kRUuO_44@~-da^ux&%5C<9k zyRGWm!|~f}tio#K5{T0TC{k1Py&H_xr%y8ayn|J0F}B&6Yi+ut=;bQo>__d)aYTmA znkAZt$e*0=_4HueUK7YKp1j((0)s%a)C|kIP3iW21lklt=J!-vWP)DF<&QSrxSRUlk zF;3OB))7=y*@C;i6uYz7#1t~b&re&zyVZ|TW$!-@Y7dcz=?k^BNL&I*#)?|G=4ScS ztKfM*zZ;H3A6&XiPEM>dJgGLs-mZ6MJqi#esjDk7Gz&up)=YktMhoxk?!B=q{%WaU zf#7SPboq3vfPTyWzn{*^2iegq3;0s2!KQVeX~0v4R#Q_mM==fTCZ^kaG0DleMfey0 znGP)ni05q8g%b;5F7 z?iC;O&Cgxlz&r`g_`~aO7H*~x*z|<p}<b!-m!l_5- zW=@N-iGfFEpVQh9{-XS6v3`CO!1U!TXy)STV^VHYp%LEAy-D@_fWbZz$&}flJNVX5 zyE?oFqlKVD=rMUJu+G)i)&j$$l|{y1Ck<{M9so25&`G%_(WHqqSCo*NVtm?(n&ohB z-1S{B_jNGtt_qKmi|0*nx!lt2SA7zXbo~KQNh)JfO)S&Am?EoM@LoJS;zYGkZqxc+ zyzCaVtB&+a+iprEf z;Rm|*=<4*zr$wou3K!nV-A5@I8O-cc6Ce)RK~UeGKfZ*e5mF9=QuA-jtZDbhajY1Q zIo4qcFAF^|B4~u+93~}c{i1IApmOg3vlk6akZZywz_kO9^>2O=a{)1cXOfWcwo<0q zp~^i;f(VvmIjsL=1Qph82e+y>w}pB4bNkjOtUxXgb&q%u7^$?`ua~|5Vx8uwQ_OMh zj>Pp@te00t4I=7Yhr01g@r`ghJO@gybBKht>U*3N5@R?-ouXwnhI@1BDF)XpBeGg- z^}7`~Zy@>$^XyX`^Ls}kPi^P*W7*e9`$YKN+zgj0F9i$*!B_9&82Xi^bPUY|xY5VI z?Mnh#zK z*6{PA7w!o9GTyg)q1E^w3jk5w%+xgI_1NnlW>7vJo`W_O7Ct^cAt6-yQKa)dCN{RL zZz?g@^OaU)tNZdQ2|Fp5X~mPECJb1$la{u;ty}<*z%tpM4d`8Yd6ory)@h5wjHAhx z(Vh`-#g~Vt6^ibKC;kG3vWGmz`*DMPad3jdmxPFfcMam0_7oM z;EDftc$og_&}Mr(V@a)T*X|%P|cD65MZ*FFISX@mGL*^(q1#~C%QU%3T&B?st zBqx};{C}T-2(fDw-%|Xx&!REt(#J@~#X4mwz2XE)ZD$#yws7QIcboO*Nlq69EAR52 zrAzO)LvaKdA9*fF!oWM)RrI!{fg=zl@P=UrRLDi|ZjQQ;t?qd3&tdVu63*vvCyYm7 zgM*eN3upXy529Gyk~K!f1@k~)qGh?w=FVkqJ?b1dL}#3lwR#BVow~jD86Cdry>~o3 zWE7%|a&=<0C9AKpy1JaeqC4|T+zher{vEu2DD01CN*hUKV+N~=%8wcW4B!G~M?rb{yZgwScix+>zDQf3y`lD8E``F0 zlM{57;TyiR$eM4LOq{9>cFcOk#CGpxwXZuE8VRVLiq39}%A53k%D;@wdpIU=rqX?K&4QfgX@jac*w9Df{~I?}y)q z`ZvsNZL>*bN+Kd6EFj>1YJ^T~=kLhm3s5+hGk=XJ?%xT6{Cc>o_~vKE({TKEfxeR0 z+yNb^IdyHH!%zM5vamhPS)ZG-Q!x(2S^tAEyEWz^l6upaM6ofHT|TSt&G^Mx&ZI?} zCgM`Yy>8lDc9+^joAhj~&6*`^iWhcf+;!d5C+Z#PeL+SmQZwgs^twBl4YLUUCr*bD zk;aX3SXmXkJ$qHo-8AQHTB41HjQ%4dJX-N~uwpFdp9J%7*t?C-zY za)!L?wV4ZXv4(q9pBn8jWr9tCls&o8X8MP<;p?G?qGSD#OKs8C z_VWXunI#Rw%1^JrJ#AxgnX0}!td}+S>~Fc-c z*^V^#lsce?y`vVy(9a96>wl@95IKBw@Q57ew-8P^2RiSM4oxJFU#H0g{4?UOcHn^| zh-TkOk3ac?VjhL2eaVwJ>s5#A;a4kzr~L~?L&rXE1(q%o5J~61I>);`^ifUAaK3#; z&mr~Hok8lo!8F7mv2R~>lC9q2kMbwWR8D`AbY+%PViwq&_Wrq^*sC99`bF^hMr&kE zBpFv9;WSV?)D}6^=eRX47_BE#cjeS`agpszze2_;etNLvgW8?Qr^a&`JKV_5$0>7} zl(&FizokDAo!J!~TD`!79{89RaKR5A+96A}vwrrc4K+U|^K{zhe-#Y}c_U};Yh|yU zAcK88hd=tg|PQ{!-U+U)bNMe3_*?dqKq_llm_6w_5&%*O$nI<$6e>G7s?MfC3WKst_k1;%kwj&9B8Hpkd zkx9_X1b#)_JV93EnzNqfw6D#{q6?Mi`)XeI>*<$gZtg>I)UYDA{J(bjatLd61^%IF z+obAtxy?qZHLL{fo<=)8bMHf^Z86bmkJS0AIl7gt-KU~QE7NvWE~j7T56 zWh&3UZEaC@h0iX;gov{{2MXjW2Wp6ds<}JIIZV#@D+{dTT0Z)^9)BR5?2QA%|NRVqHDW}W@dupm zVNbsV000vB=d;MntMI3RXv>9dE(uav(?@4LLqm)iB=V>XKXIr`LoGTn-TJ*5QExqf zAT#Oz-s}0gYN&shFHQ7$N*Bv4)rE=^)j0WX0$p;vh5n`XAm77r(O!3nX#xf4=i!I- zllKoGv?IfeEP`|n2LAIkKKdc&gHcUTLFpPhitK!rkkno-H_YiBy!eGb%6|mNwuzv9 z174?|X{VQQd{r-U(#M*Os5*#*6|DccJ3TqyHJJ|)HS~%k4SgQ&hO)EJ`&4NQ;g1(g z;Q-Z(p}m4r$zmjQhuMe@-e)tRa=@Ua<--u+Q1NkLf5mA^*{gh=5+! zY;cf$3H}U#?P2JXG8EjjE~oAZ?tBmpgIHMn_8N29A~}gaWtx;AJf1A27Cffw)g9cN zW*4M;mC+&8JnyRB{jz!+HqfMA@0E6Pkr({^|6}Yu!E#MY?}>o)5<-9w>bLQ_@8@~n@A!Uv{NSMMtiAWF zwPwwnbIwd-84{8=k4+HHLt-R-6@_IRV0y#iLFc*z=u56?*A@RWCYmj9fynN&RfWT& zHo!~q#zQ}PR(VyXF#U0TnB8yP`IT6biype#YB_t;#ec_r*b?%*V{BJud|Ns(67oG4 zchb{lw;vRiLOFeelS=eJI*F8pgH;=O+C+;3+GT6W8T-<31nnwNa-gJbSfAV0uV0D) zY6XCOroLG-kCG$tneU?#rZl>*#1W}ev0g#qWxcSMm0HTf-uYh;n8ub0@lZ?k?)!3q zfv^pQq6DhQ=KI0dKg>jg-4C91q`45nU#_YLdT%ZItgQskD{jY3O&QEJ0-dz> zeh>zTMy##b%t@*|z2fW4MT9uu zHmc?`?dcGf%>1)6qh*@z9kZ+33^YMMJ>HRVX%0uXzoVx}eef7zXw8K+rrf^Y0Bb}D zAup#>PrvR;$}}!Qe<5ZpUEzrl)`dm_HbUD!6+MHWAHyGUzOs-Itvew= z(~z>`M|get1!)AT!%(FRZFw_qmv{muR8(}d;&vcF&+CuEaj!o8GpSx2>YaRR+_q2j z1A0naO3;xD@o!wRkyb}gVj{tC+Xm{ftTCr$EHKhVz<4;NUrJA@0L9EZEwrK_C!XX{ z9gF!J^v7`bi2hx8+>gTOoU^g>?YpZo>y~EAOVm@_NXV6KcJF}bt_V^LfOUn%Mx-7+ zJXH`;wEVAu#f%tuQR^*eLyo=#oa2$jJ*F5CbfCHhX?Re0;M{dsvMGB&c+wCTd!E2w z+A%vgfj`&XbH*EpmWl0d>&WdsE32;dQHMsKFE2{8dZ$lA9?D9iVrZkxaws}hKhb@B zfO>!9zamM9rlF=ztZ@b)0x1kaFI_5aj%AxnW-)yM1{^m#hLvXz6rnz_r5MO??;Uf) zY~P0F!1&PxlbauAm_AKDBZp0vN=6g3wkdM~#vgW&7)w%*K6cV|m9(K0{1 zDj@}GKR@^l&?)To>xAUw2B0@m(qx@{)5%MyM^2?YC=3WR>40?D5_`VcV5yPY9la(r zsJS`gxpFrT#kQ9bqPegVM)X5p?Vr=$6%c62LD9libui0g#9{C)OnkPaz#xvbZnNZ* zh9dQ9!OQ!UFQDn}?iit+26MEbiOmlyN2a2U$6I>aaU9tBuO(hjHOToyFP0fG0c!Ah zUP?O$IhRb8=?eU5#leF?@RELcn83P{kN7ItLS=KAhBhDod?ZX0)N~(g-9L)WEzt}e8XDTf6fb^=ii+9*@u>G~JY%0N!3UZy zaoj1jKI(MkdF59Wn1mb0KMIy@&+;5RzIB%wT_XDI3)6b_q@9cW7-w6QLipoPg0{-C zC+=9J<1(r#ZecCHqUx)q;?SJTy$&;6X<+1p2e-Xj7@af)VrHII3cYdU)xStGHKrH zJGq1(4KhSE@3&>hwy(!}P7nOkUg%=z#tH_jNeS+gt>w551-q&EJ zI=uXq$rPjckuudFjRx>6irT%`A@kmk)5MuC%_+01e-Pv%1zL7P&q2Onsk|Nh0cVis zu!@o!DCXS5OOHULHQ3V>Z4kbU0Fz)Zd)nwPVAhGNsEQPm8tqoQ;LykCfxTjwk^NR2|?_(?xi7 z1I)Li^tIL1Sl2#bSF<@|U@vB74y{*og~RB8N*9NVh>oBR%>X<7^p`}WJnAlWoZ_5Z zxnnh+Ge%u#^=dSz-W>|o=8w_WZHib^k zf5G0J%^7Nu7vANBWNUCka8|}u^sR>2}AlyfA^Ct!B$&G7~VZFcA)Nqyo+tVg_ z@U#q^qYI?O>FGVcCs3AMo8X;JpHKN)p?I|i2k0C-L4=$7#k*nAuiZ!oOQ%J(ayzh{ zKVXfzZXjJTVL{Hhs`c>b4^OkAypa=6`u5SGyo)wYu zt!x_7e1&4z74@f}0}Pt(fpxWm)JbeZN?Xmvve~mu(THbAzv_>ybuDkImXo9Z$0Vt{ z4_56MJU=URWZl1^r;U}#keC=sD^Z;IPz7vQ=XkBx@Pav zb*%I(=l+|`+uf4Ja!|#Wk$B6D)IdGf%;aQUz_vnpYF;Hpt*@?*%F(dPoyx!bJ`=%! z5!rYs#$q=hPS<#5ZAgX2CVHl2Tr2kf1UBj0HJKSWa!wGKvDcJL-4Rqbv zspHR4^Y&UaU8M`SujW}w@(7c$#bD*e_cN=WA3>LKcI=gs_x3kvfj!PpdBuIp2AUi~ z7loBo%{fDqM+xbgAcMBcx5wt<7yu8;+B`8}ZtU9rMm28I^W_U^CNRCp_ciD39lr$VvboAM~m0Q&-EEPIfFVY<8*j=~gMvxff zCQ!1I(|1t7!bjk!T9}l&*1NhHZD%>Uv}^G>0!FZ5iG5P@ zoadSTnM^f4t?&hFbWXX5a@nHCL4xaS4MA!%7;NdLF~u8hO&%FdN5xgy zM+^SXFDk~tfT{(&EaGlS_-imV8OQDCpGkCL0c&RT>~J-QOfb~q+7_E*0HfUi>E0XP zW&PadQn#9Am^lJqfJ!w@Sy#p+o7kIf#)4V%zM~7x47APd4ejkxaIG1w8~<-#-jWv) zf_S+%e|`>Gvkq02HEj%38Va??-CT6T{WR7DOVF0xY*e8^SxM!f00M}F(0+JM4rg2I z)16}v8nygcsOUqqv%OQt-o+w$WjQ72*Sj9+9b;WltGQ!c6tI_M8%B&wkL0w^4pL-j zrKx-TKxdl1SKOP249kp93Mdl+)QPz`pGBRh?ydQ$dk+}tD_*y`hXdQLt^wz!Iw9J8 zY!u#A%jvYNC1UHoeOYNp2o{|rUp&wrs){yo1}*sZ^;LNVE_hBSH4_;&!T-A4fAjuv~rwYv{|GemosPe`f4&;Ec#8H@J!U%oV4 zTDx$=HT3o4Z6ed71i*U&l$jS3GhTEhzmq;!$7EOrTQ?wY;P0BlI4=7ut)`C;BUSbPn`r15*K0rUDh|0?J_bm-D1TsxKgd4 zW2QS=Ow}L&gm@8Tsel?!Pa_*QW9*W;Z}Kq5UXPUf*&pa&GgyWGqdqfp^Wu^%4Sv9r3Y(=xb zp<&oq=CIeC{>?ToCDb7=|el)7r_A= zV$Bbm9H6?!P~CK@fGj#2Xkpx6odZmcGPEJ)*BzIFF+Y(1HDvLk*Tc+hdt^H0qInj+ zQkSV7WoAfFw-1H6Rv?Q~}>c{>996fN^uW?91y`@3f1tYQ?usyvhCk+&S6+xUC7dD}*; z_83FkGX4*r@X==corougVWkD$EA*&uY!dglDZqF-^!LF}vKluC#kB1Z86$x4&e8du zV;kmp*$jq3_Zo4t9o3ZaM+V~;G}dIM=_+WYOuw{{>gGCbaL`Qplb+3dBDpUZ2vP){n|%=NpfuEXWc zCM~WNk&mUKM$o-0-OF090^9cJQSXBR0Z;=vPY!y6j`K0%>#OU>;pf083zt7F7sEBm9Y&brQeMg&1#sha=bS^C-P_iS%w|8$;D7CC0RQDsR#JgtGvR*x zX{?z}W&pJhU?>44zeU7ObmQ00y1KSv;a9oy0q->6W}raaR~P5VogLAgU@y~qP zK`g5|vRA1PWT50T3|Wqk8rnD8L)UojfOEHOP1d!g8sMVzZ~A+vKSTU)uv;EkPpOdk zZ>%Cf<8V~rK?K$)*jwptH^avd^2_bwli#YVY1*{}-!4*8L}0&I0GIARIuq!;e(6JwRp&iz{DuIx29}?FiiqQA5AR3Ww@N*dV}8 z5H*zi?!8jIcIW?!PqVQA{oN2bnVGzfd@#U`iUL5?)K_YsBtY8QEWp+z3op#elY34J z`rEfs9>{L~otNMZRu>-Afm$q5Cj4LFd9XB0$YC zDQERr^|MVQI8^0vYGNW=czAqaAQ|aJ4S-#uW_Ce@(wcXdvrUUOR=Nw60lbnzj34+a zP`Lkcn7g$CK!0DPC|mX)D|$60JdVDvjlWF#M8mcA%lqgNSBCl3xhZ69|RGR>86T=-ts9?+P_N{z$VhSu)g zxg8()!4OmT^EB5I0C>LUk;_ZZ`=`Ux1|IQ&Bk4gBcD_t8x zQs@Z&4{n)J^66(cHOJZdlOMsLGx#jChi48Tw2RJ$rgt`oQDjhxL9@yU_h|J1gd1oo zaG>w$fxY9{dS>aFgJatnwjZjTQjaeF=UsX6w8v{S2V%y!t#yn8mdz|sG+VZI4-c(L zMS%j?zdLU!iHO*Af;H999Pf*ERBvudUEZ1+h$M0(eI2>j^%v3iKgD7|&Gtdm- z${jHZI@tgrA;FQqXjx=_APLNyJfGyqqzQv-3d-7hpD>uCM5S}a7xn;h3s7(wwYT{d zF)2La46}**ohaKzQ}J(Ei!apSg((zEW2!M>$eb{(LHe4WRZwa&jge z6TfX>wE=TQ!~S=ks~$kUE0P3QO+e<$yg_eoAu z!IV(M)v>SEk@qkieTIaXw{_4}6`;-~vung34mmbg0V-$~8lP<&m_Py*r$Bv9(2S>K z;Dy8CoyVUdS}zqDlLsE3(i4hTaivs>JtP~QW(J^ag?z5W;c0K)W;k53wp)8jAD^MI z^IKWBAyvBQ7qRtO;@~Z-h0qUYu520Ax8=8-TolEXAmN)1ld-|K2x=l<4`Pxs9)-Q9 zTqd=yUT`MSp5>S;=kCJxBrE{2GYlVfC+$Fo5S#2%vxN1fq`m%;;0cP{87(Fw47V#|oJ)tIV`(7!w z6cqvSD))(qi!*Gr>nL+}PiADk<;S1R48Ih7_`heB%$Rv;i2hQ!(xjRiULmnUhQ2t< zc%`}yCrQDi>+l&Zs(t(&mGKZxZ*mOz*2sCJIsc~Fwk$kb1=nx}tS_iD<6yy%1bB4Zx_mI*6cM|S1e zFV6ZNTe2kl`f&qKKg_KLpZFe~&V@6~@GwquJz83N{PcA10o`{CKv}(fN!z+;TlZ{4 zX&iNVx#G2(!SQ*1B#!Yka<3;kx2mjVM!ALjh!^|89HsK^%vp5c*rySjpU(tztz2@w z=v-|r>9`^X5@d9+-;%SlNoG{mW_PxnJzCFxuYa|5tXb_KT&i9}e~u&IJm(Fv3v553 zD^NO!7WL5bHor|wOx!=Ku=zM-LhtY?A;45oIqQ0%rltneL)`dwud%7U-7Mvis2x9o z&lBc=fNr|(4AuWRk)U935VfJzL?(@Z7-_A=N#1iw-R6s*aq<(sgXZ6*iTC8rv znNX|$K3Vut>(3X#-tpJ+EO7YYww~1PCRz#>OG?^T0nfIpRZTH^p3wpwfIK|lyL&l5 zOJFE^y6>JY`&U3O>-}x4s7l9dz_fA)`REq52sjb<7Q}VmLkxh@p;>0;fuYlCs|17a z>eaN=vv=|9evYnZtQ_-(iRVDNmHOhwc3TYuYoW8ZxA%3TeR!CBmaV%U;QZ~_ti@WG zFKYb$V0mW=h{0@1=f3t5<}9oLS{YtN&H@;^W{zKKqMD(hVR$QxsSuET3D8f-!e35k zaT!#k5{jMo1ps9+Ca0$2t|0NxX~B=QhJMz`{N|Y0f5V{UV7aD^|Gt@|WmMVo-URFg zo0M)m?6r$xNXdlrdu&Ce%A&3s_j|Rtsgh>%B#U3@jr)fxy@ZRL?38P5Obz6b!cy@F zn-*LxBGt%a;Qe~5XhIc2c+g1b&u>PuZI6)Ae7c=lJ8=ewhpbQk2P|Wkz#<&#cAAad zoSI|F`UZ!GvDw3hzP=^Nd&gMh6CsyaP{+ujx2E;!1?h2rU6)d~(+EKW((??USAxF* ztcxdJ>%$edh&r~gPH$Q|2KO>N`7&2!V!5&G0@JAgWeSkz>@-#mj6(YQ<^W#k=%RG= z={QjT)^;6#D+hiIP&B$K{RBPCB?iuaFULMWeHI!8LVZ&_mCi8<-;zb64DJ)Y`L+S4 z0}h19WkT0?JIIcp!#8`cUsnNv&{0)|qBd_LMHm(DHk*a8|5Wd2Mg|c{Ug~ZjN!&Zy z7rPA4@3ZPExjYClwij(Y)1NBZD=VgIWLI*~H4z*T+7JtJ!f#qRKjP_mb91r0B+gi6 zm_(q*jqY@6MzYy}zvA6Z`&;EIbTG2CicV36qw%~iCBMJRNFN)|95Lz;;YetBU!9G4 zsF;{EaEP*Zh?PkRc4ihW{HABs4ag2Awr6WBnBD2i9WbGNZ?ax1g{aM_YW~JdEwT|Y zks3+%zb1qnG?{v~9iUML*toUy=)7yPncLld7*`Ac5Lv_NfZ#R(+Zc!#-X+!WXbbv% zloW`W&tc-0_TbAya*VSV7YB{N+v_^6-gmf;PyN^(|KiHDa&##wS$7`pn3kDx76x$U zffO95(AUrQ%n{O6so7HsC=8g$v(eN#T@XmnScL)z?HBM`g*U!wynl~U z6PoIwal)ILV704VaPj&i^Y1(miOSR2YzZO!zFiWgQMt1VXEQcEW^tN^_5YE_ls$be zsCX8sJl(i$U}x6A{j20qh7g

968$JM#LJI$mAoq`Yr=3)OJENIt6-@T5zW<^Dw2 zs!huAs&!YufY}&7r4BdjTY&Td{d~xA!-`2t+By7|>twr%q`vAYByLGMWve#xX{}Tc z%LQVxH8{J@aWneH?Fg^O*MwHU5^TA*2S+v8Je{l?ANDe-x+yX*(sn@-ZWURCBnS4v zp6dmmSe`=8`~gP?pb`QsU%*hN<2qq+B9oPl3)B`^ z{Xh}^#FVzSGoS8!q@lw*5V|JJy&+KnQ(yGUH<@IG-1E-;gb4e=5#TUq zezPicu5K*mlg$~|>Z(SDWvfJR+$*^}{!M*V{xC#3RIyxbc6=S)##`H)?!Md4uaZjL zeXBgLEWZ+S@YCs5^QLz6Mp|sed%yb|`6VTdFQ(n{TsA0Y|ARk$6E$pTUYiH%3QA;j zuahU;)G??=@^g&e5DACIOE3GSPiBA{oQ}4=ZndH2#sSJRkdo1}+G_uPqi-h?iL}yU zWV^`uM^i@jQ+7}w*SKTO`>(ECR}OlwS_9~T%nzVK6k zm_~iJLmibdA3M#Eb3;p(Z_hA4=W2=Oqqox@;eKH)ce^ETc=H9MX{R4rk0`ck1VayKyWoAG!pP*f;QCgqs2S0HBIFnZ8Q`74Xn;qNGx)567?dJfUe znxYh;4T}ho)b{W#qfTwa1Dtg~s)VW84C_mNa6lkv#QzORnGbt%I@O4pdGBzGOESrm zS`YC(*YyeF6OGw)my)y5tgy))=x^=g;?0(GnX#*j`H82hlC3i3^X_25?H;p34#ITX zH}=v^1=Tll@(Vnlz8ZXeCnZERTa*llnkH-r*V|oIajv}{Okb}NRN;n4E&c-0(V*(<7aVI#ZeofB*Say@t z*kEY$Le=^0p|DlT@pQ`|#SCw|gq<_U&#a;gE%80`$W$Ny{_BPRR z?`wmv-fC6Pyl=KV2iZ_h)DPz1S8Qp1N=&bIm^ZzK-tcFhkJx$IjNV-gQxw*58DH-tSxfe#1wpLDCdHhFYG} z<}!L-t1j>X*FTI^zZpJ<{qfzJC@Tj!bW0MNLRFkq-1RT2MKc|ua-_jqjMG}#?nlJ) zzTs9k{kG^fvH#@c*a15-NgJ@YfHa)KA&=OhBZl;Co@117%1hio5GJ5xLP6V^?2fUs z%n(1XS87n2o zok!n>TUh-9!FbE!S&pqI*v-OMX?Z$YM-k?59%NHcs&L+}0B_!`##=!>9n8VG$$3xl zbPtK0UqR(f9<|U(QzxGvVu8Mo6gvbR9cV_49|n8(CG9!EqI3hSL56IorCx@AoKlyq zP#Z2H@CRk$GOa&FZ^yDCp4pb`&eNlh+qf@+l9+nNZt7ko*KAZ5Aa@e2ByBV=MjI3} zb2241<5oir97^EL!%N;)$2SYa^iLYsgVP15c#}D@k9<%e)Pez+&h$N?pV8^KY?Nsz z$sUh^bFRqQu*$R)c0pVUbzEGua43ATe_VE@eL8fIR{O?B-eW@!L{Rh6NBh|Yj?ctb z(fG{VaIU|Hp){lKbG{7{K|;{gVOd{u$th!4eEJZqgi!_Wem&Utnl^i9$GeoPNqDUZ z0VEI)FQM^&g1{;<;$4vKZP+4+Tmf+=P-)+=mF!FO z)Sr8SOtky6Yt3=zSL)dkg+C_V8=r=&c)c^?YvWJD-#)0|T*Or_Ubb}AK^xq(*Ewas z9`+Fd8&PweS95*n5Vc3E+5YypL(=Qw@)LhqB15N3=(R%qWx8{JowPMCQpxI4S%Z_RGR~s z)F7q1L4kzdE}ILMWsn{u<(n>7`^2k6Vh$!bd!>-2Ih3M*AJMw6l z0$b|~C`Rt@o`ya25#7yx!Gz&{_8kA+*84F<#L8XRi}(Es)?TUZ!oN$@O$l&egL65u zZi5qFTXz1zC_=O(f^2@u0Pgqfc{A%sa`hYMMdt>m=Gn_aQ$m@|!PK}^vOeN)D{D07 z%IzlxHRp-&`gxOlr_mW=3~IL;n;oG++kWT>IxEUd=V@4g1Idz$GMmlpQA^3*(K!(U z(Tc@ts&St?(hs6_(n&#~_>VYgDEUYN+B(Ya2H{E}y~u-DGlHC(J{lTT%f2_fF05OZ zY8KEe1@l!vGn4<$H2_#A#P9*Q0g(+F$gy(*b|hRFmIS_yPGd!NehSBF@hw}~(nX0D zM}&YW=sUcli@&~FhHD?qzkY+8!qc_2X)wu~{0bMg!L+G&fQ_8F>y0rz(lZ=p?F$+0 zm=-3@0O#VKr|HzMznt#al=o~U{Q#)@A_EY8H=7JbBfZwgK(qC7<)N?|`5ViO0U1}D zyq95Dx0xfo7PS;_b~k zeOvv)d9Y_n`3(WQ_Ss1KLT@$R`gEY^lW2sh2g;~<+OgVZ1Zj?~tT)bIh~J$hU9;}U zmC!wM;u&EgZ=R7I(omsZ`>2RPoY2nh74t>PQQOUK=)1c=Z)yffl%A~h`1L?&V<_Xt z4ZXrWPaKAQ(BjjWPvzc#ZMqQ#&0_t&@{$p6;Dwb{;fW4D@FFU=9&w7;7+odbvCXMD zX@eD5`Af#%q4p77y&7Qz%YwJW#AsVJcijR)sGx3&p1x%`K_l78h_@#eD;+M(`U67`Z>gI^`w+RA<-55$)tf}?O( z%5otf^}w2l&v>h9u27CTz@vqV&B~8o_9g&h#^Z;;VNpZ=p?zFRcs?gX$%x6)Q$9E3 z2)C@G@$i{sc`LR<42u0T8ZNtc0=xkp9)%e*;yP*3Zo}x$kZiA^ON`9Hl%{WVCPR2& z9>k*H_xyqZ3yhmtWhr?wrN4kXQB&7`iJS$)X`SlhSIt%O4c%91fd2zP{$FWD)@(dq zy$y5;))YAp^;7EtiQ_AGo3-5o4jHLTj3ZjfO{xEL2 z>uyHEmf9et$4YC*#^`_>193b{<>3`&W-V+InMF3=8piM7JwuGehD9{a>l;L(&83E3~NJD&WP1<2y62PZHx&(GU3&8e9F4uKaD@iMnR>@Q~ZnE8q?q(8F_o33;sBmEEdfmS%rrdyElu9n03 zCP~no=XZhM29&Je>#16?9=U*3u5@dGTbDX;4ugQX^07Ajs<+F3@-%paa@gm_^#jsz z3Odi6MaLY_t93-IF5m9v?dZAHO!Fdc z;BoNrW4iZ6vks@SU8*}~=7WaCW$_<6o~(SP1x9{Lb?cT;I$jce1or#pKN#!W%CCn8 zw(V0)ng_PB&SC zHwAN!)sJ^1WoJ8`fkBBEi%)YAC;L}BE`>{1)E7V2RTwYTu7)6I?-%!(X5H|eD{ljX z#*hKF4}jHkjb7&eEP^aOC>>NO-HFk~73nVel%7xMUg6gFGNR#t8IqUu90+AoB>1fd z3jR6bI9(DnbG_fY&xCM`s`4qM^8iM}yM5!|;WkErg)0gF(awGF2v}xluhn;kyRjv4 z1j`Xg>M<%%jIr4e_An~-SEIY1x!?yfU!`sdys}RfJ%+xDGqUZWuHdRbLrqUq`^=az zYuLlG~>tlHW?FLaUyZl-z|WT?L9^o1jieL(4C zStGn586o4cv#o*g^or(V%L?gQ7j!JP>;PGX`Grh$tsLq*U^c?tAUF z-JABfmbAtFVDE}2_F|Zqcrla_UXA&`+m?-2`X#e|&oc$Z>t+3#Jc$!ac+74Q1@ToV zJk+sB?-!P*27eb-wxG`$JwLSBK%C#E@IBGps_@f`d4B!$pMM(ln8aywM=l8E(H$l7 zix5`4t(1dWy}Y0#@7(m%&=AIPMSn z>o0ozDyQI)|FmOl%sgi+rRtWI;CeKlM3o5aaR_U;rQ)Yu?T%uf+4j0kMX|^3>y!z5 z_d!4HmRcc2$S!MSJ(CezFWvRcIywB&kK#QjJB(-Zr!-Rh*bb%X2Ix-Zp;jt}IUFY? z{gM>^OofEV7pKxj0UG6|lj5!3N;ZpG$_w+q_pK7F<-V;bdB^x3jxq&xO5nxR$mRpq zE~8;I7`w`{FmKc$O|4tWkF)%EtqR`qedb22G&*;Ri}~ZmJexwhze8SRIV4#BIFX0H zZb}WfzBvVoZXC4E+ukj9Vz3T7M|%aqLEVXL)O3o_KC8v7x;C$0bsSt>U(m6~ubbXn zKHUn2QY+=&3GdsScPpj4+^PYygmt)K1^+NDx|Wms8&AlUl{J~Y^Kk$5bflE|Qu>=IE>je0w9@sBs3&UBX@3nPqt1^U;0Hl=eRw4cfzFUIoR|oo=0wr%`CR;D@n#n+3M+}l4a=YhJk;3DD;O;-n&;` z+W-NbUy#C2sxp%a_ZX=*Z&}klgS~#H=ad%z3(E{Ft&s$Fm!G8%{Tcn8ts|!1CNs<|8l2Y+DOsp**qgWp1a&Hu}(<<;rna zGM={HsHi+er;i!jW1Fo7k$(c!K?5XRD-pMHprfjdNy3>|1 zM~2yin_j*3CLGdfM#_UMb6DtuWGd|UpF7i37}_Y)zK%!+|$Qd|a)>G`Y= z!JUgH3|#gGcC$=*_W1IjVUahN8EH=fhF5=^R3P{2uU5k2sXAXnku^+Wm;CJ>$*!`n z!vjB>oJ)hL0IBePk&(=%_4Datv#DRnBW^n(8a4VC=U>m=kPAKxBZ-TCgXJMDUj0j( zvNT*=I4nYv*QGn5dDEcL=~sqvbgX%^q6y2#3@s9S23NmIrppXhmKMdudiU-;VHn*; zRAB5b%f2dsq@nTCo#zqvn&M+*&NbeYq9c~-CP|^U_`g|n1BDpWr3X>Ehl2bSxI$WI z*Y6YRs?S8CGMg?x%*qHS6Sqlq)p7YRcaV55)i;|9Cyy;u8knB|wF~TR+(|%}o-G+Z zTMdd*Zb|{^87g+8nv^5)zDtw9A>xJLEw<<2$EeSh+vr4DT5J_%s6_hqV9IjsIgWB| zU$qMb$N`J}rf~B8fLAFhxwHZH*Fz4meS!r;g#tJy)m0B;V-+oUD1QEkQC*54ve6?} z5)tYHc}o$vonOz{OX|20E;4;Fvcj2KU?O!dPVTa7U)m&iV9Af(Q7yvzSb05e*`VI`S1=ERk9A)5kl%aoZWTi5{{rbU1m<>Cb@Z4%9=6pu($$Q-ENvBqQrKm)4LwkFy#aZNcj2 zW-{)5Z-Gz|sn$KtpU=B<@%(3@NYaEz!B5a@6BapU&|LmRPPKUizmD0UX2&mDU|SAW zW2_n1=L2KFJxef+WYRU5(YaZsTR`dJ9~ZIe!I`Q{U$65+sX-PQfnVpB*sU~)oS@_A z;N(zC!!Kz*CB{ZFROO~k1DZtH4Y1lpo8w)t=zp?fx3B8u>-I_;hU;3o1-HQy<|1;`vw3i{t|0eY1jOE?|j(j%sX{RL9W?gv@d4cK402Z&up$aN;q#NvF|R z(C%9@o{D$hYOm+=kAE?Z$(=@}%n%B{vBqyxd8VfwL7B#{?3Bh|+GSQ_D`~NV9rr$Y zYhxn7eIKIyf)4bNb2Xt8sKFuskV~yc*9W=wYTr;#Rlgt{)s9?l5K^gWepfyv?KeVo zmUmmX!Isg7@3!7T zkPkhQl8@#l8&lU4JTN8IcKdvDV5lUi<;LbM^S27OVpaa`X+EcOphi)bydb#Hn&s$cfx?`-Rx*ZMm+iaW;HiQ^{n~HW z?)ArS^1l94%bxYlk4(z<%*LAnJch=%=daxIw6bs`15QTh-ey1A^^3My4$HTnEaw0P z!=#5yb}*jVu8TIEI#E>n?8kI96|886&N!s`kSnm2+@*5C;gjjCXp$zvav1v*$atwe zlVCqUboQJ%1YKBnBH!ymSsZs(?fSB96t;VdY=FdMtL(?ANu8M)7Q7KPhPou@cTY$zUATago1_kmcW~lIR!D(EfZg?sh=a ze+OD2>y{MQX&r{_iXm+{5V=9I*HQ8}a1$B3u1*i&W7(0BDEVr!Ky* zA~x-d7wG)++9u-TYg+q3ZI=JsF!+}!F+k^&-#lV7iN`ug^g@2~!bV^m!;+Id$VK)7 zmsW~8KPAUS;<=^%d?uumBztuloyEE5v^B9*~I= zuISO4r%9~faf4+k{-I(ueFE!YEa0zw2iD)}Nn>Pa?Jyq`L+?DJu;=ITHg7tH=zk z7x=eQ1pCDgwcb#cSBBdCy#vVSbKptEEyUx!r`L|(MesX7(wu`66OsLDg)1sbr`|t^TIYl?y$k&ZmnO@KitlQsP z{kv2Jzx%~=Uslq8@(57|h6*j%Ruah)s^1f1K{%eOF$H;*%&V;7;e|$Z@N@-r-5J~m z1s0+A!M*UwYe{w2Hfw#@+#lEp|If!ex0PU07Vr2eQPfJ@;~*;k3bZKsPq)$&UzY-I zJUgOD>?!5O?Yz5J)=CGn;ER2v=U{|&2p9SFV1I0U$SWCQ9z=MVa(xecw|IvQ^l&|M zq&rh1=;kt5m~cdjagS84Rr?ZH7&Wpl9$Y>~e7PSlqfhjk_GUKkx*H*ApIv zdW2h6U_ZIsF&YEQT(JMW_1RbOFV;Zs=8v)SpK3YATCs87y+a-iL(M%a)?~;Wxf)P$3E)T(+{w2?V-dd(wEyZU9rUb5T0! zf`R>H4GnSp-Bc6t6z`*Z@wrOZ5^6q_Y4Q3pyfLN-uZL(do}XBI8h^}*-y%e5&P9?P zkAslyOqTx5nNw^asw>|4@3oXbay;}wSrF(0Se0P}EncB0fcKX5?GV!&YyhyEf>)G8 zudn-fhoD>X-r+?2&Q<^V9!&+_$HWIoGdrTi2 z3A&j6e)Mq~P-C779`~r{6_ro;JJYJN{DYYgPc{mlkVvvH*}vB)Kc{>N<&H>w3FfA! zj#jON#t?JwJE^Ar7M>!W{3@(w_nIt;U=l^Ghopdr=3FFmu1`~CK&4p!gOV_Ip5AW_5 zp=oc-hDS>OB-7QwYrQ+xJ~L|lqueiE@PYK_NA*kd466PaA}n}+WtpeyvK@HdJ~_=; zbyeA9ZBJd!B3kXZ#!py(Q5C6ySHv`k_jBJ+1Ve*AdpXt3@ppI%297ECWC~ttfm&C; zeyl|C+cct%(*(V$YJrV%B1J?7jW<8H+B|HIYx`%VR7h(u>!qTT!)N0jkO;*u-pnGJ zbKW^~yadnv8|*Pe zauUObZ1{%?ukgk3idg)=M?A@|t|(M^hf_)lYJ6W`R2T9ek#*X1E|_ZkAkd7G#g$*t zE3?ZTfwBhVC*w%T6IwP7t@U; zG_OyKsS=F!0lpM?Du;vM;~~rb>N?1^aH;S?ht3_5@`+o|t%&}!a6ZEcGtqJPbbevgN=;tbjGr-$bFF^Q}`7-!|;*t ze`G=gWVz}5t|Be#iAlR}FG#6tv1JwLqaF08Qeji4xtTb=Dz!EzzbxVx!^h8`{v*g< zpoX7L(Z(C5n;0Y0I~6@N#s5^k3Fa0wHzc0zvCNBt=^Gmof4c{f-68tlClaDzMkE&W z!gTQ9_p}>sr#+y00<5D0&;Muhl*2#j2fb!W6`g3#aFPKU6cXG5?>z#W6U1bGPyZ>^ z-Q~)l_i0M8$JKg*`&fG>mTYl+!0XU-@B=$Ic|HWLAYfm7 z{F-6+9>H?v2^9u^z{QHg4P51m2UquY(C{%BcvJ;NAj+Xm;4ToDOot+Ikvysa7Gk)I zbl?>@Fh#h7Rq4oWS>ru0bq<%5Rm|9a)a?5&A6#g2(@=EZUXYZhtDnm{r-UW|-T7GY literal 0 HcmV?d00001 diff --git a/src/docs/policies.md b/src/docs/policies.md new file mode 100644 index 000000000..bf2184871 --- /dev/null +++ b/src/docs/policies.md @@ -0,0 +1,59 @@ +# Mission Landing Zone Regulatory Compliance - NIST Policies + +As part of Mission Landing Zone (MLZ) it's been a goal to ensure deployments have the tools and resources available that allow it to be compliant with most regulations across industries. This does not mean that workloads are compliant, but it does mean that the technologies in use can be compliant. This is caused by not only the varying number of compliance bodies involved and and the regulations they mandate but also caused by the decisions required by how and what controls are followed. + +For the purposes of this documentation we created an example method in which the MLZ deployment can be audited for current National Institute of Standards and Technology (NIST) controls and requirements using [Azure Policies built in initiative](https://docs.microsoft.com/en-us/azure/governance/policy/samples/nist-sp-800-53-r4) for NIST 800-53. _Note: this is focused on NIST controls that have built in policies in Azure clouds._ + +By adding the --policy switch to the deployment command the script will multiple assignments to the deployment final architecture. The result is for each Tier (Hub, Tier0, Tier1, and Tier2) there will be an additional policy/initiative assigned scoped to those recourse groups. This will not impact other policies/initiatives assigned that are deployed at different scopes either prior to deploying MLZ or post deployment. + +![](images/20210419_missionlz_as_of_Aug2021_Policy.png) + +## Known Issues + +Currently there are a set of known issues with this approach. The first and somewhat important detail is that these policies are based on built in policies available in the different Azure environments. There are some variances currently between clouds. This will always happen when separate isolated environments have different deployment cycles but also can be based on preview testing versus generally available components in one cloud environment versus another. + +A secondary issue comes from the method in which the assignment is deployed. This results in 'out of band' requirements for customers. In particular, the current built-in NIST initiative has a couple policies attached that modify and/or deploy if a resource doesn't exist. Example, VM extensions for guest policy configuration would be deployed if they don't exist in the VM. These types of policies require a managed identity be created that the Policy engine can use to take these actions. This managed identity must have contributor access to the resources but deploying as a contributor and not owner limits the ability. The terraform MLZ deployment as it is today using service principles with contributor rights cannot make this role assignment but the managed identity is created. This is by design for security purposes. + +The final note is that these are audits based on NIST controls and recommendations that will require out of band work. As an example, storage account redundancy and encryption will require a decision process on what MLZ is using as temporary storage for logs versus requirements for the workloads. For example, encryption can be accomplished with multiple key models, which one is required for what category of data? + +## Deploying + +Deploying policy assignments for NIST along with a standard deployment of MLZ is as simple as adding the –policy switch to the deployment script command. This will add a separate assignment of the built in NIST initiative per resource group in the deployment, excluding the resource groups used as deployment artifacts like state and config. + +Example: + `src/scripts/deploy.sh -s \<\>subscriptionID\> -l usgovvirginia --tf-environment usgovernment –policy` + +After the resources are deployed, you will need to go into go into each assignment and retrieve the managed identity and modify its role access to contributor scoped to the associated resource group. This is due to the initiative including modify and deploy policies that act on resources, like deploying the require policy guest configuration extensions to VMs. + +Modifying + +This model uses an additional custom terraform module called 'policy-assignments'. This can be modified for adding additional initiatives if desired. The module deployments retrieve their parameter values from a local json file stored in the module directory named 'nist-parameter-values' and named after the cloud environment they are deploying to, public or usgovernment. + +Example parameters file snippet: +``` +{ + "listOfMembersToExcludeFromWindowsVMAdministratorsGroup": + { + "value": "admin" + }, + "listOfMembersToIncludeInWindowsVMAdministratorsGroup": + { + "value": "azureuser" + }, + "logAnalyticsWorkspaceIdforVMReporting": + { + "value": ${jsonencode(laws_instance_id)} + }, + "IncludeArcMachines": + { + "value": "true" + } +``` + +In the above example the 'logAnalyticsWorkspaceIdforVMReporting' is retrieved from the running terraform deployment variables. This could be modified to use a central logging workspace if desired. + +What's Next + +While this is only a start, the NIST controls included in the built-in initiatives are a good start to understanding requirements on top of MLZ for compliance. In the near future the hopes are for this to be expanded with additional built-in initiatives as well as offering an option to create your own initiative and custom policies. Potential additions will be server baselines, IL compliances, and custom policies. + +Also scripts to assist in these out-of-band processes will be added. \ No newline at end of file diff --git a/src/scripts/config/create_mlz_config_resources.sh b/src/scripts/config/create_mlz_config_resources.sh index d169a5ce1..67d731c47 100755 --- a/src/scripts/config/create_mlz_config_resources.sh +++ b/src/scripts/config/create_mlz_config_resources.sh @@ -167,13 +167,19 @@ else # Assign Contributor Role to Subscriptions for sub in "${subs[@]}" do - echo "INFO: setting Contributor role assignment for ${sp_client_id} on subscription ${sub}..." + echo "INFO: setting Contributor and Policy Contributor role assignments for ${sp_client_id} on subscription ${sub}..." az role assignment create \ --role Contributor \ --assignee-object-id "${sp_object_id}" \ --scope "/subscriptions/${sub}" \ --assignee-principal-type ServicePrincipal \ --output none + az role assignment create \ + --role 'Resource Policy Contributor' \ + --assignee-object-id "${sp_object_id}" \ + --scope "/subscriptions/${sub}" \ + --assignee-principal-type ServicePrincipal \ + --output none done else error_log "ERROR: A service principal named ${mlz_sp_name} already exists. This must be a unique service principal for your use only. Try again with a new mlz-env-name. Exiting script." diff --git a/src/scripts/deploy.sh b/src/scripts/deploy.sh index 676d7b7cb..04b1632f8 100755 --- a/src/scripts/deploy.sh +++ b/src/scripts/deploy.sh @@ -36,6 +36,7 @@ show_help() { print_formatted "--no-bastion" "" "[OPTIONAL] when present, do not create a Bastion Host and Jumpbox VM" print_formatted "--no-sentinel" "" "[OPTIONAL] when present, do not create an Azure Sentinel solution" print_formatted "--no-service-principal" "" "[OPTIONAL] when present, do not create an Azure Service Principal, instead use the credentials in the environment variables '\$ARM_CLIENT_ID' and '\$ARM_CLIENT_SECRET'" + print_formatted "--policy" "" "[OPTIONAL] when present, create Policy Assignments for built-in NIST initiative" print_formatted "--help" "-h" "Print this message" } @@ -155,7 +156,7 @@ create_mlz_resources() { create_terraform_variables() { echo "INFO: creating terraform variables at ${tfvars_file_path}..." - "${this_script_path}/terraform/create_tfvars_from_config.sh" "${tfvars_file_path}" "${mlz_config_file_path}" "${create_bastion_jumpbox}" "${create_sentinel}" + "${this_script_path}/terraform/create_tfvars_from_config.sh" "${tfvars_file_path}" "${mlz_config_file_path}" "${create_bastion_jumpbox}" "${create_sentinel}" "${create_assignment}" } apply_terraform() { @@ -194,6 +195,7 @@ default_env_name="mlz${timestamp}" create_bastion_jumpbox=true create_sentinel=true create_service_principal=true +create_assignment=false mlz_config_subid="${default_config_subid}" mlz_config_location="${default_config_location}" @@ -239,6 +241,8 @@ while [ $# -gt 0 ] ; do create_sentinel=false ;; --no-service-principal) create_service_principal=false ;; + --policy) + create_assignment=true ;; -h | --help) show_help exit 0 ;; diff --git a/src/scripts/terraform/create_tfvars_from_config.sh b/src/scripts/terraform/create_tfvars_from_config.sh index 26003a32c..dcae77907 100755 --- a/src/scripts/terraform/create_tfvars_from_config.sh +++ b/src/scripts/terraform/create_tfvars_from_config.sh @@ -17,7 +17,7 @@ error_log() { usage() { echo "create_tfvars_from_config.sh: generate a terraform tfvars file given an MLZ config and a desired tfvars file name" - echo "create_tfvars_from_config.sh: " + echo "create_tfvars_from_config.sh: " show_help } @@ -30,6 +30,7 @@ file_to_create=$1 mlz_config=$2 create_bastion_jumpbox=${3:-true} create_sentinel=${4:-true} +create_assignment=${5:-false} # source config . "${mlz_config}" @@ -55,6 +56,7 @@ append_kvp "mlz_cloud" "${mlz_cloudname}" append_kvp "mlz_tenantid" "${mlz_tenantid}" append_kvp "mlz_location" "${mlz_config_location}" append_kvp "mlz_metadatahost" "${mlz_metadatahost}" +append_kvp "create_assignment" "${create_assignment}" append_kvp "hub_subid" "${mlz_saca_subid}" append_kvp "hub_rgname" "rg-saca-${mlz_env_name}" diff --git a/src/terraform/mlz/main.tf b/src/terraform/mlz/main.tf index 92af9b0da..aded2561d 100644 --- a/src/terraform/mlz/main.tf +++ b/src/terraform/mlz/main.tf @@ -513,3 +513,53 @@ module "jumpbox" { DeploymentName = var.deploymentname } } + +##################################### +### STAGE 4: Compliance example ### +##################################### + +module "hub-policy-assignment" { + count = var.create_assignment ? 1 : 0 + + providers = { azurerm = azurerm.hub } + source = "../modules/policy-assignments" + depends_on = [azurerm_resource_group.hub, azurerm_log_analytics_workspace.laws] + resource_group_name = azurerm_resource_group.hub.name + laws_instance_id = azurerm_log_analytics_workspace.laws.workspace_id + environment = var.tf_environment # Example "usgovernment" + log_analytics_workspace_resource_id = azurerm_log_analytics_workspace.laws.id +} + +module "tier0-policy-assignment" { + count = var.create_assignment ? 1 : 0 + + providers = { azurerm = azurerm.tier0 } + source = "../modules/policy-assignments" + depends_on = [azurerm_resource_group.tier0, azurerm_log_analytics_workspace.laws] + resource_group_name = azurerm_resource_group.tier0.name + laws_instance_id = azurerm_log_analytics_workspace.laws.workspace_id + environment = var.tf_environment # Example "usgovernment" + log_analytics_workspace_resource_id = azurerm_log_analytics_workspace.laws.id +} +module "tier1-policy-assignment" { + count = var.create_assignment ? 1 : 0 + + providers = { azurerm = azurerm.tier1 } + source = "../modules/policy-assignments" + depends_on = [azurerm_resource_group.tier1, azurerm_log_analytics_workspace.laws] + resource_group_name = azurerm_resource_group.tier1.name + laws_instance_id = azurerm_log_analytics_workspace.laws.workspace_id + environment = var.tf_environment # Example "usgovernment" + log_analytics_workspace_resource_id = azurerm_log_analytics_workspace.laws.id +} +module "tier2-policy-assignment" { + count = var.create_assignment ? 1 : 0 + + providers = { azurerm = azurerm.tier2 } + source = "../modules/policy-assignments" + depends_on = [azurerm_resource_group.tier2, azurerm_log_analytics_workspace.laws] + resource_group_name = azurerm_resource_group.tier2.name + laws_instance_id = azurerm_log_analytics_workspace.laws.workspace_id + environment = var.tf_environment # Example "usgovernment" + log_analytics_workspace_resource_id = azurerm_log_analytics_workspace.laws.id +} \ No newline at end of file diff --git a/src/terraform/mlz/variables.tf b/src/terraform/mlz/variables.tf index 4b73757a7..c158a9751 100644 --- a/src/terraform/mlz/variables.tf +++ b/src/terraform/mlz/variables.tf @@ -53,6 +53,12 @@ variable "mlz_objectid" { sensitive = true } +variable "create_assignment" { + description = "Create an Azure Policy assignement for defaul NIST initiative." + type = bool + default = false +} + ################################# # Hub Configuration ################################# diff --git a/src/terraform/modules/policy-assignments/main.tf b/src/terraform/modules/policy-assignments/main.tf new file mode 100644 index 000000000..868dad37c --- /dev/null +++ b/src/terraform/modules/policy-assignments/main.tf @@ -0,0 +1,19 @@ +# Copyright (c) Microsoft Corporation. +# Licensed under the MIT License. +data "azurerm_resource_group" "rg" { + name = var.resource_group_name +} + +resource "azurerm_resource_group_policy_assignment" "policy_assign" { + name = "NIST Assignment - ${data.azurerm_resource_group.rg.name}" + resource_group_id = data.azurerm_resource_group.rg.id + policy_definition_id = var.policy_id + location = data.azurerm_resource_group.rg.location + identity { + type = "SystemAssigned" + } + # Define parameters for value template file directed to environment + parameters = templatefile("${path.module}/nist-parameter-values/${var.environment}.json.tmpl", { + laws_instance_id = var.laws_instance_id + }) +} \ No newline at end of file diff --git a/src/terraform/modules/policy-assignments/nist-parameter-values/public.json.tmpl b/src/terraform/modules/policy-assignments/nist-parameter-values/public.json.tmpl new file mode 100644 index 000000000..df80a22c6 --- /dev/null +++ b/src/terraform/modules/policy-assignments/nist-parameter-values/public.json.tmpl @@ -0,0 +1,34 @@ +{ + "listOfMembersToExcludeFromWindowsVMAdministratorsGroup": + { + "value": "admin" + }, + "listOfMembersToIncludeInWindowsVMAdministratorsGroup": + { + "value": "azureuser" + }, + "logAnalyticsWorkspaceIdforVMReporting": + { + "value": ${jsonencode(laws_instance_id)} + }, + "IncludeArcMachines": + { + "value": "true" + }, + "MinimumTLSVersion-5752e6d6-1206-46d8-8ab1-ecc2f71a8112": + { + "value": "1.2" + }, + "NotAvailableMachineState-bed48b13-6647-468e-aa2f-1af1d3f4dd40": + { + "value": "Compliant" + }, + "requiredRetentionDays": + { + "value": "365" + }, + "resourceGroupName-b6e2945c-0b7b-40f5-9233-7a5323b5cdc6": + { + "value": "NetworkWatcherRG" + } +} \ No newline at end of file diff --git a/src/terraform/modules/policy-assignments/nist-parameter-values/usgovernment.json.tmpl b/src/terraform/modules/policy-assignments/nist-parameter-values/usgovernment.json.tmpl new file mode 100644 index 000000000..957c53ccb --- /dev/null +++ b/src/terraform/modules/policy-assignments/nist-parameter-values/usgovernment.json.tmpl @@ -0,0 +1,34 @@ +{ + "listOfMembersToExcludeFromWindowsVMAdministratorsGroup": + { + "value": "admin" + }, + "listOfMembersToIncludeInWindowsVMAdministratorsGroup": + { + "value": "azureuser" + }, + "logAnalyticsWorkspaceIdforVMReporting": + { + "value": ${jsonencode(laws_instance_id)} + }, + "IncludeArcMachines": + { + "value": "true" + }, + "MinimumTLSVersion-5752e6d6-1206-46d8-8ab1-ecc2f71a8112": + { + "value": "1.2" + }, + "NotAvailableMachineState-bed48b13-6647-468e-aa2f-1af1d3f4dd40": + { + "value": "Compliant" + }, + "requiredRetentionDays": + { + "value": "365" + }, + "resourceGroupName-b6e2945c-0b7b-40f5-9233-7a5323b5cdc6": + { + "value": "NetworkWatcherRG" + } +} \ No newline at end of file diff --git a/src/terraform/modules/policy-assignments/output.tf b/src/terraform/modules/policy-assignments/output.tf new file mode 100644 index 000000000..e69de29bb diff --git a/src/terraform/modules/policy-assignments/variables.tf b/src/terraform/modules/policy-assignments/variables.tf new file mode 100644 index 000000000..9bfb2f13f --- /dev/null +++ b/src/terraform/modules/policy-assignments/variables.tf @@ -0,0 +1,20 @@ +# Copyright (c) Microsoft Corporation. +# Licensed under the MIT License. + +variable "policy_id" { + description = "The Azure policy ID for the NIST 800-53 R4 policy initiative." + default = "/providers/Microsoft.Authorization/policySetDefinitions/cf25b9c1-bd23-4eb6-bd2c-f4f3ac644a5f" +} + +variable "resource_group_name" { + description = "Resource group name for policy assignment." +} + +variable "environment" {} + +variable "laws_instance_id" {} + +# Full resource ID used if enabling activity diagnostic logging +variable "log_analytics_workspace_resource_id" { + description = "The resource id of the Log Analytics Workspace" +} \ No newline at end of file From 7576568dd4c068912560da4914d2a276a61b71a4 Mon Sep 17 00:00:00 2001 From: shawngib Date: Tue, 24 Aug 2021 15:27:07 -0400 Subject: [PATCH 2/4] fixed formatting of files and readme encoding --- src/docs/policies.md | 14 +++--- src/terraform/mlz/main.tf | 50 ++++++++++--------- .../modules/policy-assignments/main.tf | 4 +- .../modules/policy-assignments/variables.tf | 19 +++++-- 4 files changed, 49 insertions(+), 38 deletions(-) diff --git a/src/docs/policies.md b/src/docs/policies.md index bf2184871..fa9741a9f 100644 --- a/src/docs/policies.md +++ b/src/docs/policies.md @@ -1,10 +1,10 @@ # Mission Landing Zone Regulatory Compliance - NIST Policies -As part of Mission Landing Zone (MLZ) it's been a goal to ensure deployments have the tools and resources available that allow it to be compliant with most regulations across industries. This does not mean that workloads are compliant, but it does mean that the technologies in use can be compliant. This is caused by not only the varying number of compliance bodies involved and and the regulations they mandate but also caused by the decisions required by how and what controls are followed. +As part of Mission Landing Zone (MLZ) it's been a goal to ensure deployments have the tools and resources available that allow it to be compliant with most regulations across industries. This does not mean that workloads are compliant, but it does mean that the technologies in use can be compliant. This is caused by not only the varying number of compliance bodies involved and and the regulations they mandate but also caused by the decisions required by how and what controls are followed. For the purposes of this documentation we created an example method in which the MLZ deployment can be audited for current National Institute of Standards and Technology (NIST) controls and requirements using [Azure Policies built in initiative](https://docs.microsoft.com/en-us/azure/governance/policy/samples/nist-sp-800-53-r4) for NIST 800-53. _Note: this is focused on NIST controls that have built in policies in Azure clouds._ -By adding the --policy switch to the deployment command the script will multiple assignments to the deployment final architecture. The result is for each Tier (Hub, Tier0, Tier1, and Tier2) there will be an additional policy/initiative assigned scoped to those recourse groups. This will not impact other policies/initiatives assigned that are deployed at different scopes either prior to deploying MLZ or post deployment. +By adding the `--policy` switch to the deployment command the script will multiple assignments to the deployment final architecture. The result is for each Tier (Hub, Tier0, Tier1, and Tier2) there will be an additional policy/initiative assigned scoped to those recourse groups. This will not impact other policies/initiatives assigned that are deployed at different scopes either prior to deploying MLZ or post deployment. ![](images/20210419_missionlz_as_of_Aug2021_Policy.png) @@ -12,7 +12,7 @@ By adding the --policy switch to the deployment command the script will multiple Currently there are a set of known issues with this approach. The first and somewhat important detail is that these policies are based on built in policies available in the different Azure environments. There are some variances currently between clouds. This will always happen when separate isolated environments have different deployment cycles but also can be based on preview testing versus generally available components in one cloud environment versus another. -A secondary issue comes from the method in which the assignment is deployed. This results in 'out of band' requirements for customers. In particular, the current built-in NIST initiative has a couple policies attached that modify and/or deploy if a resource doesn't exist. Example, VM extensions for guest policy configuration would be deployed if they don't exist in the VM. These types of policies require a managed identity be created that the Policy engine can use to take these actions. This managed identity must have contributor access to the resources but deploying as a contributor and not owner limits the ability. The terraform MLZ deployment as it is today using service principles with contributor rights cannot make this role assignment but the managed identity is created. This is by design for security purposes. +A secondary issue comes from the method in which the assignment is deployed. This results in 'out of band' requirements for customers. In particular, the current built-in NIST initiative has a couple policies attached that modify and/or deploy if a resource doesn't exist. Example, VM extensions for guest policy configuration would be deployed if they don't exist in the VM. These types of policies require a managed identity be created that the Policy engine can use to take these actions. This managed identity must have contributor access to the resources but deploying as a contributor and not owner limits the ability. The terraform MLZ deployment as it is today using service principles with contributor rights cannot make this role assignment but the managed identity is created. This is by design for security purposes. The final note is that these are audits based on NIST controls and recommendations that will require out of band work. As an example, storage account redundancy and encryption will require a decision process on what MLZ is using as temporary storage for logs versus requirements for the workloads. For example, encryption can be accomplished with multiple key models, which one is required for what category of data? @@ -21,13 +21,13 @@ The final note is that these are audits based on NIST controls and recommendatio Deploying policy assignments for NIST along with a standard deployment of MLZ is as simple as adding the –policy switch to the deployment script command. This will add a separate assignment of the built in NIST initiative per resource group in the deployment, excluding the resource groups used as deployment artifacts like state and config. Example: - `src/scripts/deploy.sh -s \<\>subscriptionID\> -l usgovvirginia --tf-environment usgovernment –policy` + `src/scripts/deploy.sh -s -l usgovvirginia --tf-environment usgovernment –policy` After the resources are deployed, you will need to go into go into each assignment and retrieve the managed identity and modify its role access to contributor scoped to the associated resource group. This is due to the initiative including modify and deploy policies that act on resources, like deploying the require policy guest configuration extensions to VMs. Modifying -This model uses an additional custom terraform module called 'policy-assignments'. This can be modified for adding additional initiatives if desired. The module deployments retrieve their parameter values from a local json file stored in the module directory named 'nist-parameter-values' and named after the cloud environment they are deploying to, public or usgovernment. +This model uses an additional custom terraform module called 'policy-assignments'. This can be modified for adding additional initiatives if desired. The module deployments retrieve their parameter values from a local json file stored in the module directory named 'nist-parameter-values' and named after the cloud environment they are deploying to, public or usgovernment. Example parameters file snippet: ``` @@ -50,9 +50,9 @@ Example parameters file snippet: } ``` -In the above example the 'logAnalyticsWorkspaceIdforVMReporting' is retrieved from the running terraform deployment variables. This could be modified to use a central logging workspace if desired. +In the above example the 'logAnalyticsWorkspaceIdforVMReporting' is retrieved from the running terraform deployment variables. This could be modified to use a central logging workspace if desired. -What's Next +What's Next While this is only a start, the NIST controls included in the built-in initiatives are a good start to understanding requirements on top of MLZ for compliance. In the near future the hopes are for this to be expanded with additional built-in initiatives as well as offering an option to create your own initiative and custom policies. Potential additions will be server baselines, IL compliances, and custom policies. diff --git a/src/terraform/mlz/main.tf b/src/terraform/mlz/main.tf index aded2561d..c9a4305e6 100644 --- a/src/terraform/mlz/main.tf +++ b/src/terraform/mlz/main.tf @@ -521,45 +521,47 @@ module "jumpbox" { module "hub-policy-assignment" { count = var.create_assignment ? 1 : 0 - providers = { azurerm = azurerm.hub } - source = "../modules/policy-assignments" - depends_on = [azurerm_resource_group.hub, azurerm_log_analytics_workspace.laws] - resource_group_name = azurerm_resource_group.hub.name - laws_instance_id = azurerm_log_analytics_workspace.laws.workspace_id - environment = var.tf_environment # Example "usgovernment" + providers = { azurerm = azurerm.hub } + source = "../modules/policy-assignments" + depends_on = [azurerm_resource_group.hub, azurerm_log_analytics_workspace.laws] + resource_group_name = azurerm_resource_group.hub.name + laws_instance_id = azurerm_log_analytics_workspace.laws.workspace_id + environment = var.tf_environment # Example "usgovernment" log_analytics_workspace_resource_id = azurerm_log_analytics_workspace.laws.id } module "tier0-policy-assignment" { count = var.create_assignment ? 1 : 0 - providers = { azurerm = azurerm.tier0 } - source = "../modules/policy-assignments" - depends_on = [azurerm_resource_group.tier0, azurerm_log_analytics_workspace.laws] - resource_group_name = azurerm_resource_group.tier0.name - laws_instance_id = azurerm_log_analytics_workspace.laws.workspace_id - environment = var.tf_environment # Example "usgovernment" + providers = { azurerm = azurerm.tier0 } + source = "../modules/policy-assignments" + depends_on = [azurerm_resource_group.tier0, azurerm_log_analytics_workspace.laws] + resource_group_name = azurerm_resource_group.tier0.name + laws_instance_id = azurerm_log_analytics_workspace.laws.workspace_id + environment = var.tf_environment # Example "usgovernment" log_analytics_workspace_resource_id = azurerm_log_analytics_workspace.laws.id } + module "tier1-policy-assignment" { count = var.create_assignment ? 1 : 0 - providers = { azurerm = azurerm.tier1 } - source = "../modules/policy-assignments" - depends_on = [azurerm_resource_group.tier1, azurerm_log_analytics_workspace.laws] - resource_group_name = azurerm_resource_group.tier1.name - laws_instance_id = azurerm_log_analytics_workspace.laws.workspace_id - environment = var.tf_environment # Example "usgovernment" + providers = { azurerm = azurerm.tier1 } + source = "../modules/policy-assignments" + depends_on = [azurerm_resource_group.tier1, azurerm_log_analytics_workspace.laws] + resource_group_name = azurerm_resource_group.tier1.name + laws_instance_id = azurerm_log_analytics_workspace.laws.workspace_id + environment = var.tf_environment # Example "usgovernment" log_analytics_workspace_resource_id = azurerm_log_analytics_workspace.laws.id } + module "tier2-policy-assignment" { count = var.create_assignment ? 1 : 0 - providers = { azurerm = azurerm.tier2 } - source = "../modules/policy-assignments" - depends_on = [azurerm_resource_group.tier2, azurerm_log_analytics_workspace.laws] - resource_group_name = azurerm_resource_group.tier2.name - laws_instance_id = azurerm_log_analytics_workspace.laws.workspace_id - environment = var.tf_environment # Example "usgovernment" + providers = { azurerm = azurerm.tier2 } + source = "../modules/policy-assignments" + depends_on = [azurerm_resource_group.tier2, azurerm_log_analytics_workspace.laws] + resource_group_name = azurerm_resource_group.tier2.name + laws_instance_id = azurerm_log_analytics_workspace.laws.workspace_id + environment = var.tf_environment # Example "usgovernment" log_analytics_workspace_resource_id = azurerm_log_analytics_workspace.laws.id } \ No newline at end of file diff --git a/src/terraform/modules/policy-assignments/main.tf b/src/terraform/modules/policy-assignments/main.tf index 868dad37c..ac8f2c3d0 100644 --- a/src/terraform/modules/policy-assignments/main.tf +++ b/src/terraform/modules/policy-assignments/main.tf @@ -8,12 +8,12 @@ resource "azurerm_resource_group_policy_assignment" "policy_assign" { name = "NIST Assignment - ${data.azurerm_resource_group.rg.name}" resource_group_id = data.azurerm_resource_group.rg.id policy_definition_id = var.policy_id - location = data.azurerm_resource_group.rg.location + location = data.azurerm_resource_group.rg.location identity { type = "SystemAssigned" } # Define parameters for value template file directed to environment parameters = templatefile("${path.module}/nist-parameter-values/${var.environment}.json.tmpl", { - laws_instance_id = var.laws_instance_id + laws_instance_id = var.laws_instance_id }) } \ No newline at end of file diff --git a/src/terraform/modules/policy-assignments/variables.tf b/src/terraform/modules/policy-assignments/variables.tf index 9bfb2f13f..96cbd1f61 100644 --- a/src/terraform/modules/policy-assignments/variables.tf +++ b/src/terraform/modules/policy-assignments/variables.tf @@ -1,20 +1,29 @@ # Copyright (c) Microsoft Corporation. # Licensed under the MIT License. - variable "policy_id" { - description = "The Azure policy ID for the NIST 800-53 R4 policy initiative." - default = "/providers/Microsoft.Authorization/policySetDefinitions/cf25b9c1-bd23-4eb6-bd2c-f4f3ac644a5f" + description = "The Azure policy ID for the NIST 800-53 R4 policy initiative." + type = string + default = "/providers/Microsoft.Authorization/policySetDefinitions/cf25b9c1-bd23-4eb6-bd2c-f4f3ac644a5f" } variable "resource_group_name" { description = "Resource group name for policy assignment." + type = string } -variable "environment" {} +variable "environment" { + description = "The Terraform backend environment e.g. public or usgovernment. It defults to public." + type = string + default = "public" +} -variable "laws_instance_id" {} +variable "laws_instance_id" { + description = "The log ananlytics workspace ID which will be privided to the underlying policy rules via the policy parameters." + type = string +} # Full resource ID used if enabling activity diagnostic logging variable "log_analytics_workspace_resource_id" { description = "The resource id of the Log Analytics Workspace" + type = string } \ No newline at end of file From e67f2e1083b470e70c6ba3c1b2b50cc3d67389b5 Mon Sep 17 00:00:00 2001 From: Glenn Musa <4622125+glennmusa@users.noreply.github.com> Date: Wed, 25 Aug 2021 10:18:50 -0400 Subject: [PATCH 3/4] Update src/terraform/modules/policy-assignments/variables.tf --- src/terraform/modules/policy-assignments/variables.tf | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/src/terraform/modules/policy-assignments/variables.tf b/src/terraform/modules/policy-assignments/variables.tf index 96cbd1f61..b9647062c 100644 --- a/src/terraform/modules/policy-assignments/variables.tf +++ b/src/terraform/modules/policy-assignments/variables.tf @@ -18,7 +18,7 @@ variable "environment" { } variable "laws_instance_id" { - description = "The log ananlytics workspace ID which will be privided to the underlying policy rules via the policy parameters." + description = "The log analytics workspace ID which will be provided to the underlying policy rules via the policy parameters." type = string } From ac3338a96d9f85c8e3ed4bf088098232de13e4dc Mon Sep 17 00:00:00 2001 From: Glenn Musa <4622125+glennmusa@users.noreply.github.com> Date: Wed, 25 Aug 2021 10:18:56 -0400 Subject: [PATCH 4/4] Update src/terraform/modules/policy-assignments/variables.tf --- src/terraform/modules/policy-assignments/variables.tf | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/src/terraform/modules/policy-assignments/variables.tf b/src/terraform/modules/policy-assignments/variables.tf index b9647062c..d07a9a568 100644 --- a/src/terraform/modules/policy-assignments/variables.tf +++ b/src/terraform/modules/policy-assignments/variables.tf @@ -12,7 +12,7 @@ variable "resource_group_name" { } variable "environment" { - description = "The Terraform backend environment e.g. public or usgovernment. It defults to public." + description = "The Terraform backend environment e.g. public or usgovernment. It defaults to public." type = string default = "public" }